SQL Injection Vulnerability in PHPGurukul Park Ticketing Management System

CVE-2024-54811

Summary

A SQL injection vulnerability has been identified in the PHPGurukul Park Ticketing Management System, specifically in the /index.php file. The vulnerability allows attackers to manipulate SQL queries via the 'login' parameter, leading to the execution of arbitrary SQL commands. This could result in unauthorized access to sensitive data, allowing malicious actors to compromise the integrity and security of the application. Organizations using this software version should prioritize implementing security measures to mitigate the risks associated with this vulnerability.

References