SQL Injection Vulnerability in itsourcecode Restaurant Management System
CVE-2025-4192
6.9MEDIUM
What is CVE-2025-4192?
A vulnerability has been identified in the itsourcecode Restaurant Management System 1.0 affecting the /admin/category_save.php file. This security flaw involves improper validation of the 'Category' argument, which allows attackers to execute SQL injection attacks. This enables remote exploitation, potentially compromising the integrity of the application and its data. Prompt security measures are recommended to mitigate the risk of exploitation.
Affected Version(s)
Restaurant Management System 1.0
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.