CVE-2022-40049 - Theme Park Ticketing System Project Theme Park Ticketing System
Critical 7.5
SQL injection vulnerability in sourcecodester Theme Park Ticketing System 1.0 allows remote attackers to view sensitive information via the id parameter to the /tpts/manage_user.php page.
Affected software
Theme Park Ticketing System Project Theme Park Ticketing System