3 matches found
CVE-2025-11330
The CVE describes a SQL injection in PHPGurukul Beauty Parlour Management System 1.1, caused by unsafely handling the fromdate/todate parameters in /admin/sales-reports-detail.php. This can be exploited remotely and the exploit has been disclosed. Connected sources corroborate a lack of input val...
PT-2025-40887
Name of the Vulnerable Software and Affected Versions PHPGurukul Beauty Parlour Management System version 1.1 Description A flaw exists in PHPGurukul Beauty Parlour Management System version 1.1 that allows for SQL injection. The issue is located in the /admin/sales-reports-detail.php file,...
CVE-2025-10826
A security flaw has been discovered in Campcodes Online Beauty Parlor Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/sales-reports-detail.php. The manipulation of the argument fromdate/todate results in sql injection. The attack can be launche...