CVE-2025-4882

A vulnerability was found in itsourcecode Restaurant Management System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/team_update.php. The manipulation of the argument team leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Published: May 18, 2025
Updated: May 22, 2025
CVE: CVE-2025-4882
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-74
CWE-89

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
adonesevangelista / restaurant_management_system	1.0	1.0.x

https://github.com/Cherish-Ink/CVE/issues/2
https://itsourcecode.com/
https://vuldb.com/?ctiid.309435
https://vuldb.com/?id.309435
https://vuldb.com/?submit.576285

Vulnerability Database

CVE-2025-4882