First published: Wed May 24 2023(Updated: )
A vulnerability was found in SourceCodester Theme Park Ticketing System 1.0. It has been classified as critical. This affects an unknown part of the file print_ticket.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-229821 was assigned to this vulnerability.
Credit: cna@vuldb.com cna@vuldb.com
Affected Software | Affected Version | How to fix |
---|---|---|
Theme Park Ticketing System Project Theme Park Ticketing System | =1.0 | |
=1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2023-2865 is critical.
The affected software for CVE-2023-2865 is SourceCodester Theme Park Ticketing System 1.0.
The vulnerability type of CVE-2023-2865 is SQL injection.
To fix the SQL injection vulnerability in SourceCodester Theme Park Ticketing System 1.0, apply the latest patch or update provided by the software vendor.
More information about CVE-2023-2865 can be found at the following references: [Reference 1](https://vuldb.com/?id.229821), [Reference 2](https://github.com/XIAONIGM/CVEReport/blob/main/SQL.md), [Reference 3](https://vuldb.com/?ctiid.229821).