Bang Resto
by Bang Resto
CVEs (5)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-47780 | Cri | 0.64 | 9.8 | 0.01 | Jan 31, 2023 | SQL Injection vulnerability in Bangresto 1.0 via the itemID parameter. | ||
| CVE-2023-29849 | Hig | 0.60 | 8.8 | 0.03 | Apr 24, 2023 | Bang Resto 1.0 was discovered to contain multiple SQL injection vulnerabilities via the btnMenuItemID, itemID, itemPrice, menuID, staffID, or itemqty parameter. | ||
| CVE-2022-46443 | Hig | 0.60 | 8.8 | 0.38 | Dec 14, 2022 | mesinkasir Bangresto 1.0 is vulnberable to SQL Injection via the itemqty%5B%5D parameter. | ||
| CVE-2023-29848 | Med | 0.34 | 4.8 | 0.02 | Apr 24, 2023 | Bang Resto 1.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the itemName parameter in the admin/menu.php Add New Menu function. | ||
| CVE-2025-60280 | 0.00 | — | 0.00 | Oct 21, 2025 | Cross-Site Scripting (XSS) vulnerability in Bang Resto v1.0 could allow an attacker to inject malicious JavaScript code into the application's web pages. This vulnerability exists due to insufficient input sanitization or output encoding, allowing attacker-controlled input to be… |
- risk 0.64cvss 9.8epss 0.01
SQL Injection vulnerability in Bangresto 1.0 via the itemID parameter.
- risk 0.60cvss 8.8epss 0.03
Bang Resto 1.0 was discovered to contain multiple SQL injection vulnerabilities via the btnMenuItemID, itemID, itemPrice, menuID, staffID, or itemqty parameter.
- risk 0.60cvss 8.8epss 0.38
mesinkasir Bangresto 1.0 is vulnberable to SQL Injection via the itemqty%5B%5D parameter.
- risk 0.34cvss 4.8epss 0.02
Bang Resto 1.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the itemName parameter in the admin/menu.php Add New Menu function.
- CVE-2025-60280Oct 21, 2025risk 0.00cvss —epss 0.00
Cross-Site Scripting (XSS) vulnerability in Bang Resto v1.0 could allow an attacker to inject malicious JavaScript code into the application's web pages. This vulnerability exists due to insufficient input sanitization or output encoding, allowing attacker-controlled input to be…