CVE-2021-45803

HIGH

MartDevelopers iResturant 1.0 - SQL Injection

Title source: llm
STIX 2.1

Description

MartDevelopers iResturant 1.0 is vulnerable to SQL Injection. SQL Injection occurs because this view parameter value is added to the SQL query without additional verification when viewing reservation.

References (2)

Core 2
Core References
Broken Link x_refsource_misc
https://blog.pocas.kr/posts/sqli-iResturant-2/

Scores

CVSS v3 8.8
EPSS 0.0118
EPSS Percentile 64.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-89
Status published
Products (1)
iresturant_project/iresturant 1.0
Published Jan 25, 2022
Tracked Since Feb 18, 2026