← Back

Restaurant Management System

restaurant_management_system

Vendor: Sourcecodester • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-18417
1Sourcecodester
1Restaurant Management System
Jun 17, 2026
Oct 24, 2019
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
Sourcecodester Restaurant Management System 1.0 allows an authenticated attacker to upload arbitrary files that can result in code execution. The issue occurs because the application fails to adequately sanitize user-sup...Show more
Sourcecodester Restaurant Management System 1.0 allows an authenticated attacker to upload arbitrary files that can result in code execution. The issue occurs because the application fails to adequately sanitize user-supplied input, e.g., "add a new food" allows .php files.Show less
CVE-2019-18414
1Sourcecodester
1Restaurant Management System
Jun 17, 2026
Oct 24, 2019
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Sourcecodester Restaurant Management System 1.0 is affected by an admin/staff-exec.php Cross Site Request Forgery vulnerability due to a lack of CSRF protection. This could lead to an attacker tricking the administrator...Show more
Sourcecodester Restaurant Management System 1.0 is affected by an admin/staff-exec.php Cross Site Request Forgery vulnerability due to a lack of CSRF protection. This could lead to an attacker tricking the administrator into executing arbitrary code or adding a staff entry via a crafted HTML page.Show less