115 matches found
CVE-2025-7144
A vulnerability has been found in SourceCodester Best Salon Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /panel/admin-profile.php of the component Admin Profile Page. The manipulation of the argument Admin Name leads to cross site...
CVE-2025-7144 SourceCodester Best Salon Management System Admin Profile Page admin-profile.php cross site scripting
A vulnerability has been found in SourceCodester Best Salon Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /panel/admin-profile.php of the component Admin Profile Page. The manipulation of the argument Admin Name leads to cross site...
CVE-2025-7144
CVE-2025-7144 affects SourceCodester Best Salon Management System 1.0. The vulnerability is a cross-site scripting in the file /panel/admin-profile.php , caused by manipulation of the Admin Name parameter. Exploitation can be performed remotely , and multiple sources note that the exploit has bee...
CVE-2025-7142
A vulnerability, which was classified as problematic, has been found in SourceCodester Best Salon Management System 1.0. Affected by this issue is some unknown functionality of the file /panel/search-appointment.php. The manipulation leads to cross site scripting. The attack may be launched...
CVE-2025-7143
A vulnerability, which was classified as problematic, was found in SourceCodester Best Salon Management System 1.0. This affects an unknown part of the file /panel/edit-tax.php of the component Update Tax Page. The manipulation of the argument Tax Name leads to cross site scripting. It is possibl...
CVE-2025-7143 SourceCodester Best Salon Management System Update Tax Page edit-tax.php cross site scripting
A vulnerability, which was classified as problematic, was found in SourceCodester Best Salon Management System 1.0. This affects an unknown part of the file /panel/edit-tax.php of the component Update Tax Page. The manipulation of the argument Tax Name leads to cross site scripting. It is possibl...
CVE-2025-7143
CVE-2025-7143 affects SourceCodester Best Salon Management System 1.0, impacting the /panel/edit-tax.php file in the Update Tax Page. The vulnerability is a cross‑site scripting flaw triggered by manipulating the Tax Name parameter, allowing remote initiation. Exploitation is disclosed publicly i...
CVE-2025-7142
CVE-2025-7142 affects SourceCodester Best Salon Management System 1.0. The vulnerability resides in /panel/search-appointment.php, where input manipulation enables cross-site scripting. The issue is exploitable remotely and an exploit has been disclosed publicly. Public technical details in conne...
CVE-2025-7141
A vulnerability classified as problematic was found in SourceCodester Best Salon Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /panel/editplan.php of the component Update Staff Page. The manipulation leads to cross site scripting. The attack can be...
CVE-2025-7140
A vulnerability classified as problematic has been found in SourceCodester Best Salon Management System 1.0. Affected is an unknown function of the file /panel/edit-staff.php of the component Update Staff Page. The manipulation of the argument Staff Name leads to cross site scripting. It is...
CVE-2025-7141
Affected software: SourceCodester Best Salon Management System 1.0. The issue occurs in the Update Staff Page component, specifically /panel/edit_plan.php, allowing cross-site scripting via manipulation of an unknown functionality. The vulnerability is exploitable remotely and has public disclosu...
CVE-2025-7141 SourceCodester Best Salon Management System Update Staff Page edit_plan.php cross site scripting
A vulnerability classified as problematic was found in SourceCodester Best Salon Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /panel/editplan.php of the component Update Staff Page. The manipulation leads to cross site scripting. The attack can be...
CVE-2025-7140 SourceCodester Best Salon Management System Update Staff Page edit-staff.php cross site scripting
A vulnerability classified as problematic has been found in SourceCodester Best Salon Management System 1.0. Affected is an unknown function of the file /panel/edit-staff.php of the component Update Staff Page. The manipulation of the argument Staff Name leads to cross site scripting. It is...
CVE-2025-7140
The CVE-2025-7140 affects SourceCodester Best Salon Management System 1.0, specifically the /panel/edit-staff.php Update Staff Page. The vulnerability arises from manipulating the Staff Name parameter, enabling cross-site scripting (XSS) with remote exploitation. Multiple sources confirm this ent...
CVE-2025-7138
A vulnerability was found in SourceCodester Best Salon Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /panel/admin-profile.php. The manipulation of the argument adminname leads to sql injection. The attack can be initiated remotely. Th...
CVE-2025-7139
A vulnerability was found in SourceCodester Best Salon Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /panel/edit-customer-detailed.php of the component Update Customer Details Page. The manipulation of the argument Name leads to...
CVE-2025-7139 SourceCodester Best Salon Management System Update Customer Details Page edit-customer-detailed.php cross site scripting
A vulnerability was found in SourceCodester Best Salon Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /panel/edit-customer-detailed.php of the component Update Customer Details Page. The manipulation of the argument Name leads to...
CVE-2025-7139
CVE-2025-7139 affects SourceCodester Best Salon Management System 1.0. The issue resides in the Update Customer Details Page, specifically the /panel/edit-customer-detailed.php file where the Name parameter is manipulated to trigger cross-site scripting. Exploitation can be remote, and public dis...
CVE-2025-7138
CVE-2025-7138 affects SourceCodester Best Salon Management System 1.0. The vulnerability is an SQL injection in the file /panel/admin-profile.php via the manipulated parameter adminname . It is a remote, unauthenticated risk with public exploit disclosure. Multiple scoring references exist (NVD C...
CVE-2025-7137
A vulnerability was found in SourceCodester Best Salon Management System 1.0. It has been classified as critical. This affects an unknown part of the file /panel/schedule-staff.php. The manipulation of the argument staffid leads to sql injection. It is possible to initiate the attack remotely. Th...