3 matches found
Aptsys Gemscms POS Platform security vulnerabilities
Aptsys Gemscms POS Platform is a catering management system developed by the Indian company Aptsys. There is a security vulnerability in the Aptsys Gemscms POS Platform. This vulnerability stems from the GetServiceByRestaurantID endpoint, which does not properly clean or parameterize user inputs,...
CVE-2025-52025
CVE-2025-52025 describes an SQL Injection in the Aptsys gemscms POS Platform backend, specifically the GetServiceByRestaurantID endpoint. The issue arises from directly concatenating user input into a dynamic SQL query via the id parameter, enabling arbitrary SQL execution and unauthorized data a...
CVE-2025-52025
An SQL Injection vulnerability exists in the GetServiceByRestaurantID endpoint of the Aptsys gemscms POS Platform backend thru 2025-05-28. The vulnerability arises because user input is directly inserted into a dynamic SQL query syntax without proper sanitization or parameterization. This allows ...