Vulnerabilities > Theme Park Ticketing System Project > High

DATE	CVE	VULNERABILITY TITLE	RISK
2023-01-06	CVE-2022-40049	SQL Injection vulnerability in Theme Park Ticketing System Project Theme Park Ticketing System 1.0 SQL injection vulnerability in sourcecodester Theme Park Ticketing System 1.0 allows remote attackers to view sensitive information via the id parameter to the /tpts/manage_user.php page. network low complexity theme-park-ticketing-system-project CWE-89	7.5
2022-06-15	CVE-2022-32302	SQL Injection vulnerability in Theme Park Ticketing System Project Theme Park Ticketing System 1.0 Theme Park Ticketing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at edit_ticket.php. network low complexity theme-park-ticketing-system-project CWE-89	8.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.