Security Advisory

CVE-2020-29284

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-02 21:08:09

Last updated 2024-08-04 16:48:01

Assigner mitre

State PUBLISHED

Description

The file view-chair-list.php in Multi Restaurant Table Reservation System 1.0 does not perform input validation on the table_id parameter which allows unauthenticated SQL Injection. An attacker can send malicious input in the GET request to /dashboard/view-chair-list.php?table_id= to trigger the vulnerability.

← Browse all CVEs View on cve.org ↗