Vulnerability Details CVE-2014-6619
Multiple cross-site scripting (XSS) vulnerabilities in register-exec.php in Restaurant Script (PizzaInn_Project) 1.0.0 allow remote attackers to inject arbitrary web script or HTML via the (1) fname, (2) lname, or (3) login parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.034
EPSS Ranking 86.9%
CVSS Severity
CVSS v2 Score 4.3
References
- http://osvdb.org/show/osvdb/112019
- http://packetstormsecurity.com/files/128337
- http://www.exploit-db.com/exploits/34760
- https://exchange.xforce.ibmcloud.com/vulnerabilities/96159
- http://osvdb.org/show/osvdb/112019
- http://packetstormsecurity.com/files/128337
- http://www.exploit-db.com/exploits/34760
- https://exchange.xforce.ibmcloud.com/vulnerabilities/96159
Products affected by CVE-2014-6619
-
cpe:2.3:a:restaurantmis:restaurant_script:1.0.0