2026-02-23 09:30:22
INCIBE
PUBLISHED
SQL injection vulnerability in Infoticketing. This vulnerability allows an unauthenticated attacker to retrieve, create, update, and delete the database by sending a POST request using the code parameter in /components/cart/cartApplyDiscount.php.