Lucene search
K

261 matches found

NVD
NVD
added 4 days ago7 views

CVE-2026-13498

A vulnerability was identified in yashpokharna2555 restaurent-management-system. This affects an unknown function of the file /forgotpassword.php of the component POST Parameter Handler. Such manipulation of the argument email leads to sql injection. The attack can be launched remotely. The explo...

7.5CVSS0.00269EPSS
Exploits0References6
EUVD
EUVD
added 4 days ago8 views

EUVD-2026-39997

A security flaw has been discovered in yashpokharna2555 restaurent-management-system. This impacts an unknown function of the file loginregister.php of the component Registration Handler. Performing a manipulation of the argument Username results in cross site scripting. The attack may be initiat...

5.3CVSS4.4AI score0.00278EPSS
Exploits0References6
CVE
CVE
added 4 days ago11 views

CVE-2026-13499

CVE-2026-13499 concerns a cross-site scripting flaw in the yashpokharna2555 restaurent-management-system, affecting the Registration Handler’s login_register.php. Manipulating the Username argument enables an XSS condition, with remote initiation possible. The exploit has been publicly released; ...

5.3CVSS4.4AI score0.00278EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 4 days ago7 views

CVE-2026-13499

A security flaw has been discovered in yashpokharna2555 restaurent-management-system. This impacts an unknown function of the file loginregister.php of the component Registration Handler. Performing a manipulation of the argument Username results in cross site scripting. The attack may be initiat...

5.3CVSS4.4AI score0.00278EPSS
Exploits0References6
CVE
CVE
added 4 days ago14 views

CVE-2026-13498

The CVE concerns yashpokharna2555 restaurant-management-system. It identifies a vulnerability in an unknown function within /forgotpassword.php (POST Parameter Handler) where manipulating the email parameter leads to SQL injection. The issue can be exploited remotely and publicly available exploi...

7.5CVSS6.9AI score0.00269EPSS
Exploits0References6
Cvelist
Cvelist
added 4 days ago32 views

CVE-2026-13498 yashpokharna2555 restaurent-management-system POST Parameter forgotpassword.php sql injection

A vulnerability was identified in yashpokharna2555 restaurent-management-system. This affects an unknown function of the file /forgotpassword.php of the component POST Parameter Handler. Such manipulation of the argument email leads to sql injection. The attack can be launched remotely. The explo...

7.5CVSS0.00269EPSS
Exploits0References6
GithubExploit
GithubExploit
added 2026/04/17 7:6 p.m.80 views

RMS-1.0-Exploit-RCE

Remote Code Execution Exploit for Restaurant...

5.8AI score
Exploits0
OSV
OSV
added 2026/01/29 6:16 p.m.6 views

CVE-2026-1598

A vulnerability was found in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. Impacted is an unknown function of the file /dashboard/home/profile of the component User Information Module. Performing a manipulation of the argument fullname results in cross site scripting. It i...

5.4CVSS4.2AI score0.00206EPSS
Exploits1References4
NVD
NVD
added 2026/01/29 6:16 p.m.7 views

CVE-2026-1598

A vulnerability was found in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. Impacted is an unknown function of the file /dashboard/home/profile of the component User Information Module. Performing a manipulation of the argument fullname results in cross site scripting. It i...

5.4CVSS0.00206EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/01/29 5:2 p.m.32 views

CVE-2026-1598 Bdtask Bhojon All-In-One Restaurant Management System User Information profile cross site scripting

A vulnerability was found in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. Impacted is an unknown function of the file /dashboard/home/profile of the component User Information Module. Performing a manipulation of the argument fullname results in cross site scripting. It i...

5.1CVSS0.00206EPSS
Exploits1References4
EUVD
EUVD
added 2026/01/29 5:2 p.m.6 views

EUVD-2026-4956

A vulnerability was found in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. Impacted is an unknown function of the file /dashboard/home/profile of the component User Information Module. Performing a manipulation of the argument fullname results in cross site scripting. It i...

5.1CVSS4.3AI score0.00206EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/01/29 12:0 a.m.6 views

Bdtask Bhojon All-In-One Restaurant Management System has security vulnerabilities.

Bdtask Bhojon All-In-One Restaurant Management System is a restaurant management system developed by the Bangladeshi company Bdtask. Versions of the Bdtask Bhojon All-In-One Restaurant Management System prior to version 20260116 contained security vulnerabilities. These vulnerabilities were cause...

5.3CVSS5.8AI score0.00295EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/01/09 10:18 a.m.7 views

CVE-2019-18417

Sourcecodester Restaurant Management System 1.0 allows an authenticated attacker to upload arbitrary files that can result in code execution. The issue occurs because the application fails to adequately sanitize user-supplied input, e.g., "add a new food" allows .php files...

8.8CVSS7.3AI score0.0173EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:18 a.m.5 views

CVE-2019-18414

Sourcecodester Restaurant Management System 1.0 is affected by an admin/staff-exec.php Cross Site Request Forgery vulnerability due to a lack of CSRF protection. This could lead to an attacker tricking the administrator into executing arbitrary code or adding a staff entry via a crafted HTML page...

8.8CVSS7.2AI score0.00485EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/21 4:31 p.m.7 views

CVE-2025-60783

There is a SQL injection vulnerability in Restaurant Management System DBMS Project v1.0 via login.php. The vulnerability allows attackers to manipulate the application's database through specially crafted SQL query strings...

6.5CVSS8AI score0.00244EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/20 9:30 p.m.6 views

EUVD-2025-35101

There is a SQL injection vulnerability in Restaurant Management System DBMS Project v1.0 via login.php. The vulnerability allows attackers to manipulate the application's database through specially crafted SQL query strings...

6.5CVSS7.4AI score0.00244EPSS
Exploits1References3
OSV
OSV
added 2025/10/20 9:15 p.m.3 views

CVE-2025-60783

There is a SQL injection vulnerability in Restaurant Management System DBMS Project v1.0 via login.php. The vulnerability allows attackers to manipulate the application's database through specially crafted SQL query strings...

6.5CVSS5.9AI score0.00244EPSS
Exploits1References2
NVD
NVD
added 2025/10/20 9:15 p.m.5 views

CVE-2025-60783

There is a SQL injection vulnerability in Restaurant Management System DBMS Project v1.0 via login.php. The vulnerability allows attackers to manipulate the application's database through specially crafted SQL query strings...

6.5CVSS0.00244EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/10/20 12:0 a.m.3 views

CVE-2025-60783

There is a SQL injection vulnerability in Restaurant Management System DBMS Project v1.0 via login.php. The vulnerability allows attackers to manipulate the application's database through specially crafted SQL query strings...

7.5AI score0.00244EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/10/20 12:0 a.m.9 views

CVE-2025-60783

There is a SQL injection vulnerability in Restaurant Management System DBMS Project v1.0 via login.php. The vulnerability allows attackers to manipulate the application's database through specially crafted SQL query strings...

0.00244EPSS
Exploits1References2
Rows per page
Query Builder