CVE-2025-60783

MEDIUM

Restaurant Management System DBMS Project v1.0 - SQL Injection

Title source: llm

Description

There is a SQL injection vulnerability in Restaurant Management System DBMS Project v1.0 via login.php. The vulnerability allows attackers to manipulate the application's database through specially crafted SQL query strings.

References (2)

Core 2

Core References

Exploit, Third Party Advisory

https://gold-textbook-8ff.notion.site/Restaurant-Management-System-DBMS-project-SQL-injection-25985e97f35380b2922ad4ebe8c47639

Exploit, Third Party Advisory

https://gold-textbook-8ff.notion.site/Restaurant-Management-System-DBMS-project-SQL-injection-25985e97f35380b2922ad4ebe8c47639?pvs=73

Scores

CVSS v3 6.5

EPSS 0.0024

EPSS Percentile 15.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

CWE

CWE-89

Status published

Products (1)

rajvi-patel-22/restaurant-management-system-dbms-project 1.0

Published Oct 20, 2025

Tracked Since Feb 18, 2026