CVE-2023-3877 Campcodes Beauty Salon Management System add-services.php sql injection

A vulnerability was found in Campcodes Beauty Salon Management System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/add-services.php. The manipulation of the argument cost leads to sql injection. It is possible to initiate the attack remotely. The exploi...

CVE-2021-27544

Cross Site Scripting XSS in the "add-services.php" component of PHPGurukul Beauty Parlour Management System v1.0 allows remote attackers to execute arbitrary code by injecting arbitrary HTML into the "sername" parameter...

Sql injection

SQL Injection in the "add-services.php" component of PHPGurukul Beauty Parlour Management System v1.0 allows remote attackers to obtain sensitive database information by injecting SQL commands into the "sername" parameter...

CVE-2021-27545

SQL Injection in the "add-services.php" component of PHPGurukul Beauty Parlour Management System v1.0 allows remote attackers to obtain sensitive database information by injecting SQL commands into the "sername" parameter...

CVE-2021-27544

CVE-2021-27544 describes a cross-site scripting vulnerability in the PHPGurukul Beauty Parlour Management System v1.0, specifically in the add-services.php component where the parameter “sername” can be injected with arbitrary HTML to execute code remotely. The vulnerability is confirmed across m...