Share:

CVE-2021-25209

Severe 9.8

SQL injection vulnerability in SourceCodester Theme Park Ticketing System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to view_user.php .

Published July 22, 2021.

Affected software

Theme Park Ticketing System Project Theme Park Ticketing System

Get alerts for Theme Park Ticketing System Project Theme Park Ticketing System

Reference links

https://github.com/BigTiger2020/Theme-Park-Ticketing-System/blob/main/Theme%20Park%20Ticketing%20System.md