CVE-2026-37431

Beauty Parlour Management System v1.1 was discovered to contain a SQL injection vulnerability via the aptnumber parameter in the /appointment-detail.php endpoint. This vulnerability allows attackers to access sensitive database information via a crafted SQL statement...

CVE-2026-2088

A vulnerability has been found in PHPGurukul Beauty Parlour Management System 1.1. This affects an unknown part of the file /admin/accepted-appointment.php. Such manipulation of the argument delid leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the...

CVE-2026-2088

CVE-2026-2088 affects PHPGurukul Beauty Parlour Management System 1.1, specifically the /admin/accepted-appointment.php component. The vulnerability arises from manipulating the delid parameter to trigger SQL injection, with remote exploitation indicated and the exploit publicly disclosed. Connec...

CVE-2026-2088

A vulnerability has been found in PHPGurukul Beauty Parlour Management System 1.1. This affects an unknown part of the file /admin/accepted-appointment.php. Such manipulation of the argument delid leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the...

CVE-2025-11505

A vulnerability was identified in PHPGurukul Beauty Parlour Management System 1.1. Impacted is an unknown function of the file /admin/new-appointment.php. The manipulation of the argument delid leads to sql injection. It is possible to initiate the attack remotely. The exploit is publicly availab...

CVE-2025-11507

CVE-2025-11507 concerns the PHPGurukul Beauty Parlour Management System 1.1. Multiple connected sources describe a SQL injection in the file /admin/search-invoices.php , caused by unsafely handling the searchdata parameter in an (unknown) function. The vulnerability is described as exploitable re...

CVE-2025-11506 PHPGurukul Beauty Parlour Management System search-appointment.php sql injection

A security flaw has been discovered in PHPGurukul Beauty Parlour Management System 1.1. The affected element is an unknown function of the file /admin/search-appointment.php. The manipulation of the argument searchdata results in sql injection. It is possible to launch the attack remotely. The...

EUVD-2025-33280

A security flaw has been discovered in PHPGurukul Beauty Parlour Management System 1.1. The affected element is an unknown function of the file /admin/search-appointment.php. The manipulation of the argument searchdata results in sql injection. It is possible to launch the attack remotely. The...

PHPGurukul Beauty Parlour Management System SQL注入漏洞

Beauty Parlour Management System is an application system. Beauty Parlour Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter delid in the file /admin/manage-services.php. An attacker can...

PT-2025-41314

Name of the Vulnerable Software and Affected Versions PHPGurukul Beauty Parlour Management System version 1.1 Description A flaw exists in PHPGurukul Beauty Parlour Management System 1.1 that allows for SQL injection. This occurs due to manipulation of the searchdata argument within an unknown...

PHPGurukul Beauty Parlour Management System SQL注入漏洞

Beauty Parlour Management System is an application system. Beauty Parlour Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter searchdata in file /admin/search-invoices.php. An attacker can...

PT-2025-41307

Name of the Vulnerable Software and Affected Versions PHPGurukul Beauty Parlour Management System version 1.1 Description A flaw exists in PHPGurukul Beauty Parlour Management System 1.1 related to the processing of the /admin/manage-services.php file. Manipulation of the delid argument can resul...

CVE-2025-11416

A security flaw has been discovered in PHPGurukul Beauty Parlour Management System 1.1. This affects an unknown part of the file /admin/invoices.php. Performing a manipulation of the argument delid results in sql injection. The attack can be initiated remotely. The exploit has been released to th...

CVE-2025-11330

The CVE describes a SQL injection in PHPGurukul Beauty Parlour Management System 1.1, caused by unsafely handling the fromdate/todate parameters in /admin/sales-reports-detail.php. This can be exploited remotely and the exploit has been disclosed. Connected sources corroborate a lack of input val...

EUVD-2025-26435

Malicious code in bioql PyPI...

EUVD-2025-26650

Malicious code in bioql PyPI...

EUVD-2025-29126

Malicious code in bioql PyPI...

EUVD-2025-26371

Malicious code in bioql PyPI...

Beauty Parlour Management System view-enquiry.php File SQL Injection Vulnerability

Beauty Parlour Management System is an application system. Beauty Parlour Management System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter viewid in file /admin/view-enquiry.php. An attacker can exploi...

PHPGurukul Beauty Parlour Management System SQL注入漏洞

Beauty Parlour Management System is an application system. Beauty Parlour Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter delid in the file /admin/all-appointment.php. An attacker can...