CVE-2023-29849
published 2023-04-24CVE-2023-29849: Bang Resto 1.0 was discovered to contain multiple SQL injection vulnerabilities via the btnMenuItemID, itemID, itemPrice, menuID, staffID, or itemqty parameter.
PriorityP263high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EXPLOIT
EPSS
3.16%
86.4th percentile
Bang Resto 1.0 was discovered to contain multiple SQL injection vulnerabilities via the btnMenuItemID, itemID, itemPrice, menuID, staffID, or itemqty parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hockeycomputindo | bang_resto | — | — |
Detection & IOCsextracted from sources · hover to see the quote
command.1 union select 1,2,3,CONCAT_WS(0x203a20,0x557365723a3a3a3a20,USER(),0x3c62723e,0x44617461626173653a3a3a3a3a20,DATABASE(),0x3c62723e,0x56657273696f6e3a3a3a3a20,VERSION())-- -↗
- →Detect UNION-based SQL injection payloads in HTTP POST body parameters, specifically patterns containing CONCAT_WS with hex-encoded strings targeting USER(), DATABASE(), and VERSION() disclosure. ↗
- →Flag requests to displayitem.php with X-Requested-With: XMLHttpRequest header combined with SQL metacharacters (UNION, SELECT, --) in POST body parameters, as the endpoint is an AJAX handler that processes user-supplied IDs directly. ↗
- →Alert on sqlmap-style automated requests targeting /bangresto/staff/displayitem.php, as the exploit explicitly recommends saving the BurpSuite request and running sqlmap to dump the entire database. ↗
- ·Exploitation requires prior authentication — an attacker must have valid staff panel credentials before reaching the vulnerable endpoint. ↗
- ·The vulnerability affects Bang Resto version 1.0 only; tested on Windows 10, PHP 7.4.29, Apache 2.4.53. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
2023-04-24
Published