Vulnerability Details CVE-2020-28994
A SQL injection vulnerability was discovered in Karenderia Multiple Restaurant System, affecting versions 5.4.2 and below. The vulnerability allows for an unauthenticated attacker to perform various tasks such as modifying and leaking all contents of the database.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 75.4%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2020-28994
-
Karenderia Multiple Restaurant System Project » Karenderia Multiple Restaurant System » Version: N/Acpe:2.3:a:karenderia_multiple_restaurant_system_project:karenderia_multiple_restaurant_system:-
-
Karenderia Multiple Restaurant System Project » Karenderia Multiple Restaurant System » Version: 5.4.2cpe:2.3:a:karenderia_multiple_restaurant_system_project:karenderia_multiple_restaurant_system:5.4.2