CVE-2021-45803

high

Description

MartDevelopers iResturant 1.0 is vulnerable to SQL Injection. SQL Injection occurs because this view parameter value is added to the SQL query without additional verification when viewing reservation.

References

https://gist.github.com/P0cas/5aa55f62781364a750ac4a4d47f319fa#cve-2021-45803

https://blog.pocas.kr/posts/sqli-iResturant-2/

Details

Source: Mitre, NVD

Published: 2022-01-25

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 6.5

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 8.8

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00244