CVE-2023-7100 – PHPGurukul Restaurant Table Booking System bwdates-report-details.php sql injection
https://notcve.org/view.php?id=CVE-2023-7100
A vulnerability, which was classified as critical, was found in PHPGurukul Restaurant Table Booking System 1.0. Affected is an unknown function of the file /admin/bwdates-report-details.php. The manipulation of the argument fdate leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. • https://medium.com/@2839549219ljk/restaurant-table-booking-system-sql-injection-vulnerability-30708cfabe03 https://vuldb.com/?ctiid.248952 https://vuldb.com/?id.248952 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2023-48016
https://notcve.org/view.php?id=CVE-2023-48016
Restaurant Table Booking System V1.0 is vulnerable to SQL Injection in rtbs/admin/index.php via the username parameter. Restaurant Table Booking System V1.0 es vulnerable a la inyección SQL en rtbs/admin/index.php a través del parámetro de nombre de usuario. • https://github.com/Serhatcck/cves/blob/main/CVE-2023-48016-restaurant-table-booking-system-SQLInjection.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2023-6076 – PHPGurukul Restaurant Table Booking System Reservation Status booking-details.php information disclosure
https://notcve.org/view.php?id=CVE-2023-6076
A vulnerability classified as problematic was found in PHPGurukul Restaurant Table Booking System 1.0. Affected by this vulnerability is an unknown functionality of the file booking-details.php of the component Reservation Status Handler. The manipulation of the argument bid leads to information disclosure. The attack can be launched remotely. The identifier VDB-244945 was assigned to this vulnerability. • https://vuldb.com/?ctiid.244945 https://vuldb.com/?id.244945 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2023-6075 – PHPGurukul Restaurant Table Booking System Reservation Request index.php cross site scripting
https://notcve.org/view.php?id=CVE-2023-6075
A vulnerability classified as problematic has been found in PHPGurukul Restaurant Table Booking System 1.0. Affected is an unknown function of the file index.php of the component Reservation Request Handler. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The identifier of this vulnerability is VDB-244944. • https://vuldb.com/?ctiid.244944 https://vuldb.com/?id.244944 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2023-6074 – PHPGurukul Restaurant Table Booking System Booking Reservation check-status.php sql injection
https://notcve.org/view.php?id=CVE-2023-6074
A vulnerability was found in PHPGurukul Restaurant Table Booking System 1.0. It has been rated as critical. This issue affects some unknown processing of the file check-status.php of the component Booking Reservation Handler. The manipulation leads to sql injection. The attack may be initiated remotely. • https://vuldb.com/?ctiid.244943 https://vuldb.com/?id.244943 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •