26 matches found
EUVD-2021-12120
Malware in sbrugna...
EUVD-2022-53495
Malicious code in bioql PyPI...
EUVD-2022-43371
Malicious code in bioql PyPI...
CVE-2023-2865
A vulnerability was found in SourceCodester Theme Park Ticketing System 1.0. It has been classified as critical. This affects an unknown part of the file printticket.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is possible to initiate...
CVE-2022-32302
Theme Park Ticketing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at editticket.php...
CVE-2021-25209
SQL injection vulnerability in SourceCodester Theme Park Ticketing System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to viewuser.php...
CVE-2023-2865
A vulnerability was found in SourceCodester Theme Park Ticketing System 1.0. It has been classified as critical. This affects an unknown part of the file printticket.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is possible to initiate...
CVE-2023-2865
A vulnerability was found in SourceCodester Theme Park Ticketing System 1.0. It has been classified as critical. This affects an unknown part of the file printticket.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is possible to initiate...
Sql injection
A vulnerability was found in SourceCodester Theme Park Ticketing System 1.0. It has been classified as critical. This affects an unknown part of the file printticket.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is possible to initiate...
Theme Park Ticketing System SQL注入漏洞
Theme Park Ticketing System is a theme park ticketing system by the individual developer Carlo Montero. SourceCodester Theme Park Ticketing System version 1.0 suffers from a SQL injection vulnerability that stems from a problem with the printticket.php file and parameter id, which can be exploite...
CVE-2022-40049
SQL injection vulnerability in sourcecodester Theme Park Ticketing System 1.0 allows remote attackers to view sensitive information via the id parameter to the /tpts/manageuser.php page...
CVE-2022-40049
SQL injection vulnerability in sourcecodester Theme Park Ticketing System 1.0 allows remote attackers to view sensitive information via the id parameter to the /tpts/manageuser.php page...
Theme Park Ticketing System SQL注入漏洞
Theme Park Ticketing System is a theme park ticketing system by the individual developer Carlo Montero. A SQL injection vulnerability exists in Theme Park Ticketing System version 1.0 that could allow a remote attacker to view sensitive information via the id parameter on the /tpts/manageuser.php...
CVE-2022-40049
CVE-2022-40049 affects sourcecodester Theme Park Ticketing System v1.0. A SQL injection via the id parameter on /tpts/manage_user.php can lead to unauthorized viewing of sensitive data (confidentiality impact). CVSSv3.1 base score 7.5 (HIGH) with network attack vector, low attack complexity, no u...
PT-2023-13746 · Sourcecodester · Theme Park Ticketing System
Name of the Vulnerable Software and Affected Versions: sourcecodester Theme Park Ticketing System version 1.0 Description: The issue allows remote attackers to view sensitive information. This is achieved via the id parameter to the "/tpts/manage user.php" API endpoint. Recommendations: For...
CVE-2022-40049
SQL injection vulnerability in sourcecodester Theme Park Ticketing System 1.0 allows remote attackers to view sensitive information via the id parameter to the /tpts/manageuser.php page...
CVE-2022-40049
SQL injection vulnerability in sourcecodester Theme Park Ticketing System 1.0 allows remote attackers to view sensitive information via the id parameter to the /tpts/manageuser.php page...
CVE-2022-32302
Theme Park Ticketing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at editticket.php...
Sql injection
Theme Park Ticketing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at editticket.php...
CVE-2022-32302
CVE-2022-32302 affects Theme Park Ticketing System v1.0. The vulnerability is a SQL injection in edit_ticket.php triggered by the id parameter, caused by unsanitized input in the SQL statement. Public sources (NVD) report high impact (C, I, A high) with CVSS v3.1 base score 8.8 and network access...