Campcodes · Campcodes Park Ticketing System · CVE-2025-15214
**Name of the Vulnerable Software and Affected Versions**
Campcodes Park Ticketing System version 1.0
**Description**
A security issue exists in Campcodes Park Ticketing System version 1.0. The `save pricing` function within the `admin class.php` file is susceptible to cross-site scripting (XSS) due to manipulation of the `Name` argument. This attack can be initiated remotely. The exploit has been publicly disclosed.
**Recommendations**
Apply a fix to the `save pricing` function in the `admin class.php` file to prevent manipulation of the `Name` argument.