SQL Injection Vulnerability in Restaurant Order System by Restaurant Corp
CVE-2025-52327

Currently unrated

Key Information:

Vendor: Restaurant Corp
Status: Restaurant Order System
Vendor: CVE Published:; 1 August 2025

🔔 Create Restaurant Corp Vulnerability Alert

What is CVE-2025-52327?

An SQL Injection vulnerability exists in the Restaurant Order System 1.0, which can be exploited by local attackers. By manipulating input data sent to the payment.php file, an attacker can gain unauthorized access to sensitive data stored in the system's database. This flaw underscores the importance of implementing proper input validation and utilizing prepared statements to protect against such injection attacks.

References

http://restaurant.com

https://code-projects.org/real-estate-property-management...

https://gist.github.com/babapihai/d604a43d884a9e20c234f33...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 1, 2025
Vulnerability Reserved
Jun 16, 2025