VYPR

Theme Park Ticketing System

by Sourcecodester

CVEs (3)

  • CVE-2021-25209CriJul 22, 2021
    risk 0.64cvss 9.8epss 0.01

    SQL injection vulnerability in SourceCodester Theme Park Ticketing System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to view_user.php .

  • CVE-2022-40049HigJan 6, 2023
    risk 0.49cvss 7.5epss 0.01

    SQL injection vulnerability in sourcecodester Theme Park Ticketing System 1.0 allows remote attackers to view sensitive information via the id parameter to the /tpts/manage_user.php page.

  • CVE-2023-2865MedMay 24, 2023
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in SourceCodester Theme Park Ticketing System 1.0. It has been classified as critical. This affects an unknown part of the file print_ticket.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is…