Hockeycomputindo Bang Resto vulnerabilities
3 known vulnerabilities affecting hockeycomputindo/bang_resto.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2023-29849P2HIGHCVSS 8.8PoCv1.02023-04-24
CVE-2023-29849 [HIGH] CWE-89 CVE-2023-29849: Bang Resto 1.0 was discovered to contain multiple SQL injection vulnerabilities via the btnMenuItemI
Bang Resto 1.0 was discovered to contain multiple SQL injection vulnerabilities via the btnMenuItemID, itemID, itemPrice, menuID, staffID, or itemqty parameter.
nvd
CVE-2023-29848P4MEDIUMCVSS 4.8PoCv1.02023-04-24
CVE-2023-29848 [MEDIUM] CWE-79 CVE-2023-29848: Bang Resto 1.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the i
Bang Resto 1.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the itemName parameter in the admin/menu.php Add New Menu function.
nvd
CVE-2025-60280P4MEDIUMCVSS 6.1v1.02025-10-21
CVE-2025-60280 [MEDIUM] CWE-79 CVE-2025-60280: Cross-Site Scripting (XSS) vulnerability in Bang Resto v1.0 could allow an attacker to inject malici
Cross-Site Scripting (XSS) vulnerability in Bang Resto v1.0 could allow an attacker to inject malicious JavaScript code into the application's web pages. This vulnerability exists due to insufficient input sanitization or output encoding, allowing attacker-controlled input to be rendered directly in the browser. When exploited, an attacker can steal
nvd