CVE-2025-60280

Name of the Vulnerable Software and Affected Versions Bang Resto version 1.0

Description A Cross-Site Scripting (XSS) issue exists in Bang Resto version 1.0. This is due to inadequate input sanitization or output encoding, which allows an attacker to inject malicious JavaScript code into the application’s web pages. Successful exploitation could allow an attacker to steal session cookies, redirect users to malicious sites, perform actions on behalf of the user, or deface the website, potentially leading to user data compromise and loss of user trust.

Recommendations Update to a newer version of Bang Resto that addresses this vulnerability.