CVE-2020-36553

Name of the Vulnerable Software and Affected Versions sourcecodester Multi Restaurant Table Reservation System version 1.0

Description The issue is related to a Cross Site Scripting (XSS) vulnerability. It can be exploited via the food type field in the "/dashboard/menu-list.php" API endpoint. This allows for potential malicious script injection.

Recommendations For sourcecodester Multi Restaurant Table Reservation System version 1.0, consider restricting access to the "/dashboard/menu-list.php" endpoint until a fix is available, and avoid using the food type field in this endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.