CVE-2026-5555

Name of the Vulnerable Software and Affected Versions code-projects Concert Ticket Reservation System version 1.0

Description A weakness exists in the code-projects Concert Ticket Reservation System 1.0. The issue affects an unknown part of the file /ConcertTicketReservationSystem-master/login.php within the Parameter Handler component. Manipulation of the Email argument can lead to SQL injection. The attack can be launched remotely, and the exploit has been made publicly available.

Recommendations Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the /ConcertTicketReservationSystem-master/login.php file.