Vulnerabilities > Iresturant Project > Iresturant > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-12 | CVE-2021-43436 | Cross-site Scripting vulnerability in Iresturant Project Iresturant 1.0 MartDevelopers Inc iResturant v1.0 allows Stored XSS by placing a payload in the username field during a login attempt. | 5.4 |
| 2021-12-20 | CVE-2021-43438 | Cross-site Scripting vulnerability in Iresturant Project Iresturant 1.0 Stored XSS in Signup Form in iResturant 1.0 Allows Remote Attacker to Inject Arbitrary code via NAME and ADDRESS field | 5.4 |