Multi Restaurant Table Reservation System
Present by
Vendor
Description:
The parameters fullname, phone, and address in register.php for Multi Restaurant Table Reservation System 1.0 are vulnerable to XSS - Stored attack and PHPSESSID hijacking. The malicious user can create endless user accounts and can use them for quality lures and malicious purposes. He can use their PHP sessions every time when he wants to log in on these accounts and manipulate them for malicious purposes. Status Critical.

