CVE-2020-26773

Publication date

2021-01-07 14:19:01

Family

mitre

State

PUBLISHED

Description

Restaurant Reservation System 1.0 suffers from an authenticated SQL injection vulnerability, which allows a remote, authenticated attacker to execute arbitrary SQL commands via the date parameter in includes/reservation.inc.php.