cbcvebase.
CVE-2023-29849
published 2023-04-24

CVE-2023-29849: Bang Resto 1.0 was discovered to contain multiple SQL injection vulnerabilities via the btnMenuItemID, itemID, itemPrice, menuID, staffID, or itemqty parameter.

PriorityP263high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EXPLOIT
EPSS
3.16%
86.4th percentile
Bang Resto 1.0 was discovered to contain multiple SQL injection vulnerabilities via the btnMenuItemID, itemID, itemPrice, menuID, staffID, or itemqty parameter.

Affected

1 ranges
VendorProductVersion rangeFixed in
hockeycomputindobang_resto

Detection & IOCsextracted from sources · hover to see the quote

urlPOST /bangresto/staff/displayitem.php
path/bangresto/staff/displayitem.php
path/bangresto/staff/order.php
command.1 union select 1,2,3,CONCAT_WS(0x203a20,0x557365723a3a3a3a20,USER(),0x3c62723e,0x44617461626173653a3a3a3a3a20,DATABASE(),0x3c62723e,0x56657273696f6e3a3a3a3a20,VERSION())-- -
  • Detect UNION-based SQL injection payloads in HTTP POST body parameters, specifically patterns containing CONCAT_WS with hex-encoded strings targeting USER(), DATABASE(), and VERSION() disclosure.
  • Flag requests to displayitem.php with X-Requested-With: XMLHttpRequest header combined with SQL metacharacters (UNION, SELECT, --) in POST body parameters, as the endpoint is an AJAX handler that processes user-supplied IDs directly.
  • Alert on sqlmap-style automated requests targeting /bangresto/staff/displayitem.php, as the exploit explicitly recommends saving the BurpSuite request and running sqlmap to dump the entire database.
  • ·Exploitation requires prior authentication — an attacker must have valid staff panel credentials before reaching the vulnerable endpoint.
  • ·The vulnerability affects Bang Resto version 1.0 only; tested on Windows 10, PHP 7.4.29, Apache 2.4.53.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.