Tix.com suffered from a SQL injection vulnerability where a user could access account information, and order tickets (and print them online) via a stolen account.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/49714/SQLInjectionTix.txt
Source: https://packetstormsecurity.com/files/49714/SQLInjectionTix.txt.html