Iresturant@1.0 Security Vulnerabilities and Issues — Iresturant@1.0 CVE List

Lucene search

Iresturant ProjectIresturant1.0

5 matches found

CVE•added 2021/12/20 8:15 p.m.•44 views

CVE-2021-43439

RCE in Add Review Function in iResturant 1.0 Allows remote attacker to execute commands remotely

10CVSS9.5AI score0.03887EPSS

CVE•added 2021/12/20 8:15 p.m.•33 views

CVE-2021-43438

Stored XSS in Signup Form in iResturant 1.0 Allows Remote Attacker to Inject Arbitrary code via NAME and ADDRESS field

5.4CVSS5.4AI score0.00149EPSS

CVE•added 2022/01/25 1:15 p.m.•32 views

CVE-2021-45803

MartDevelopers iResturant 1.0 is vulnerable to SQL Injection. SQL Injection occurs because this view parameter value is added to the SQL query without additional verification when viewing reservation.

8.8CVSS9AI score0.00257EPSS

CVE•added 2022/01/25 1:15 p.m.•31 views

CVE-2021-45802

MartDevelopers iResturant 1.0 is vulnerable to SQL Injection. SQL Injection occurs because the email and phone parameter values are added to the SQL query without any verification at the time of membership registration.

9.8CVSS9.8AI score0.00264EPSS

CVE•added 2022/01/12 5:15 p.m.•28 views

CVE-2021-43436

MartDevelopers Inc iResturant v1.0 allows Stored XSS by placing a payload in the username field during a login attempt. When an administrator looks at the log of failed logins, the XSS payload will be executed.

5.4CVSS5.2AI score0.00206EPSS