Lucene search
HistoryApr 24, 2023 - 3:15 p.m.
CVE-2023-29849
cve-2023-29849
bang resto
sql injection
btnmenuitemid
itemid
itemprice
menuid
staffid
itemqty
nvd
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.006 Low
EPSS
Percentile
77.9%
Bang Resto 1.0 was discovered to contain multiple SQL injection vulnerabilities via the btnMenuItemID, itemID, itemPrice, menuID, staffID, or itemqty parameter.
Affected configurations
Node
hockeycomputindobang_restoMatch1.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| hockeycomputindo:bang_resto | hockeycomputindo bang resto | eq | 1.0 |
Related
cvelist
cvelist
CVE-2023-29849
2023-04-24 00:00:00
nvd
nvd
CVE-2023-29849
2023-04-24 15:15:08
zdt
zdt
Bang Resto v1.0 - (Multiple) SQL Injection Vulnerability
2023-04-20 00:00:00
prion
prion
Sql injection
2023-04-24 15:15:00
packetstorm
packetstorm
Bang Resto 1.0 SQL Injection
2023-04-17 00:00:00
exploitdb
exploitdb
Bang Resto v1.0 - 'Multiple' SQL Injection
2023-04-20 00:00:00
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.006 Low
EPSS
Percentile
77.9%
Related for CVE-2023-29849