Skip to main content

Restaurant Management System CVE-2019-18416

MEDIUM
Cross-site Scripting (XSS) (CWE-79)
2019-10-24 cve@mitre.org
6.1
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
6.1 MEDIUM
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
None

Lifecycle Timeline

1
CVE Published
Oct 24, 2019 - 18:15 nvd
MEDIUM 6.1

DescriptionNVD

Sourcecodester Restaurant Management System 1.0 allows XSS via the Last Name field of a member.

AnalysisAI

Sourcecodester Restaurant Management System 1.0 allows XSS via the Last Name field of a member. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Technical ContextAI

This vulnerability is classified as Cross-Site Scripting (XSS) (CWE-79), which allows attackers to inject malicious scripts into web pages viewed by other users. Sourcecodester Restaurant Management System 1.0 allows XSS via the Last Name field of a member. Affected products include: Restaurant Management System Project Restaurant Management System.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Sanitize all user input, use Content-Security-Policy headers, encode output contextually (HTML, JS, URL). Use frameworks with built-in XSS protection.

CVE-2024-44587 HIGH POC
8.8 Sep 05

itsourcecode Alton Management System 1.0 is vulnerable to SQL Injection in /noncombo_save.php via the "menu" parameter.

CVE-2019-18417 HIGH POC
8.8 Oct 24

Sourcecodester Restaurant Management System 1.0 allows an authenticated attacker to upload arbitrary files that can resu

CVE-2019-18414 HIGH POC
8.8 Oct 24

Sourcecodester Restaurant Management System 1.0 is affected by an admin/staff-exec.php Cross Site Request Forgery vulner

CVE-2025-4193 MEDIUM POC
6.9 May 02

A vulnerability was found in itsourcecode Restaurant Management System 1.0 and classified as critical. Rated medium seve

CVE-2025-4192 MEDIUM POC
6.9 May 02

A vulnerability was found in itsourcecode Restaurant Management System 1.0. Rated medium severity (CVSS 6.9), this vulne

CVE-2019-18415 MEDIUM POC
6.1 Oct 24

Sourcecodester Restaurant Management System 1.0 allows XSS via the "send a message" screen. Rated medium severity (CVSS

CVE-2024-7273 MEDIUM POC
5.3 Jul 30

A vulnerability classified as critical was found in itsourcecode Alton Management System 1.0. Rated medium severity (CVS

CVE-2024-7278 MEDIUM POC
5.1 Jul 31

A vulnerability was found in itsourcecode Alton Management System 1.0. Rated medium severity (CVSS 5.1), this vulnerabil

CVE-2024-7277 MEDIUM POC
5.1 Jul 31

A vulnerability was found in itsourcecode Alton Management System 1.0 and classified as critical. Rated medium severity

CVE-2024-7276 MEDIUM POC
5.1 Jul 30

A vulnerability has been found in itsourcecode Alton Management System 1.0 and classified as critical. Rated medium seve

CVE-2024-7275 MEDIUM POC
5.1 Jul 30

A vulnerability, which was classified as critical, was found in itsourcecode Alton Management System 1.0. Rated medium s

CVE-2024-7274 MEDIUM POC
5.1 Jul 30

A vulnerability, which was classified as critical, has been found in itsourcecode Alton Management System 1.0.php. Rated

Share

CVE-2019-18416 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy