CVE-2022-40049

Publication date

2023-01-06 00:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in sourcecodester Theme Park Ticketing System 1.0 allows remote attackers to view sensitive information via the id parameter to the /tpts/manage_user.php page.