CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

RedhatCVE•added 2025/05/23 12:21 a.m.•7 views

CVE-2022-46443

mesinkasir Bangresto 1.0 is vulnberable to SQL Injection via the itemqty%5B%5D parameter...

8.8CVSS8.1AI score0.83371EPSS

Exploits1References1

NVD•added 2023/04/24 3:15 p.m.•9 views

CVE-2023-29849

Bang Resto 1.0 was discovered to contain multiple SQL injection vulnerabilities via the btnMenuItemID, itemID, itemPrice, menuID, staffID, or itemqty parameter...

8.8CVSS9.3AI score0.0172EPSS

Exploits4References2

Cvelist•added 2023/04/24 12:0 a.m.•12 views

CVE-2023-29849

Bang Resto 1.0 was discovered to contain multiple SQL injection vulnerabilities via the btnMenuItemID, itemID, itemPrice, menuID, staffID, or itemqty parameter...

9.5AI score0.0172EPSS

Exploits4References2

CVE•added 2023/04/24 12:0 a.m.•45 views

CVE-2023-29849

Bang Resto 1.0 is affected by multiple SQL injection vulnerabilities exploitable through the parameters btnMenuItemID, itemID, itemPrice, menuID, staffID, and itemqty in order-related requests (e.g., staff/displayitem.php). The issue is confirmed across multiple feeds (NVD/Red Hat/Sec databases, ...

8.8CVSS9.2AI score0.0172EPSS

Exploits4References2Affected Software1

OSV•added 2022/12/14 6:15 p.m.•3 views

CVE-2022-46443

mesinkasir Bangresto 1.0 is vulnberable to SQL Injection via the itemqty%5B%5D parameter...

8.8CVSS5.8AI score0.83371EPSS

Exploits1References2

Prion•added 2022/12/14 6:15 p.m.•15 views

Sql injection

mesinkasir Bangresto 1.0 is vulnberable to SQL Injection via the itemqty%5B%5D parameter...

6.5CVSS9.1AI score0.83371EPSS

Exploits1References2Affected Software1

CNNVD•added 2022/12/14 12:0 a.m.•1 views

Bangresto SQL注入漏洞

Bangresto is a restaurant source code POS by the individual developer Mesin Kasir. Bangresto version 1.0 suffers from a security vulnerability that stems from its itemqty%5B%5D parameter that allows attackers to implement SQL injection...

8.8CVSS8.2AI score0.83371EPSS

Exploits1References3

Positive Technologies•added 2022/12/14 12:0 a.m.•3 views

PT-2022-27877 · Unknown · Mesinkasir Bangresto

Name of the Vulnerable Software and Affected Versions: mesinkasir Bangresto version 1.0 Description: The issue is related to SQL Injection via the itemqty%5B%5D parameter. This allows for potential exploitation. Recommendations: For mesinkasir Bangresto version 1.0, consider restricting access to...

8.8CVSS8.9AI score0.83371EPSS

Exploits1References5