Lucene search
K

400 matches found

NVD
NVD
added 2026/03/03 5:16 p.m.10 views

CVE-2026-26883

Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /msms/classes/Master.php?f=deleteappointment...

2.7CVSS0.0022EPSS
Exploits1References1
NVD
NVD
added 2026/03/03 5:16 p.m.9 views

CVE-2026-26886

Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /admin/services/manageservice.php...

2.7CVSS0.0022EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.8 views

PT-2026-22752

Sourcecodester Simple Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /msms/admin/appointments/view appointment.php...

6AI score0.0022EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/03 12:0 a.m.21 views

CVE-2026-26884

Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /msms/admin/appointments/viewappointment.php...

0.0022EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/03/03 12:0 a.m.23 views

CVE-2026-26886

Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /admin/services/manageservice.php...

0.0022EPSS
Exploits1References1
CVE
CVE
added 2026/03/03 12:0 a.m.15 views

CVE-2026-26885

CVE-2026-26885 affects the Sourcecodester Online Men's Salon Management System v1.0. The vulnerability is an SQL Injection in the endpoint /classes/Master.php?f=delete_service, caused by unsafe SQL handling in the related function. The impact is described as low with no user interaction required,...

2.7CVSS6AI score0.0022EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2026/03/03 12:0 a.m.12 views

CVE-2026-26886

CVE-2026-26886 affects Sourcecodester Online Men’s Salon Management System v1.0. The vulnerability is a SQL Injection in the admin path /admin/services/manage_service.php, caused by unsanitized input that allows injection into SQL queries. Multiple sources (Red Hat, NVD, CVE list, Attackerkb, CVE...

2.7CVSS6AI score0.0022EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.11 views

PT-2026-22753

Sourcecodester Simple Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /classes/Master.php?f=delete service...

6AI score0.0022EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/03 12:0 a.m.6 views

EUVD-2026-9299

Sourcecodester Simple Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /msms/admin/appointments/viewappointment.php...

2.7CVSS6AI score0.0022EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.7 views

PT-2026-22754

Sourcecodester Simple Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /admin/services/manage service.php...

6AI score0.0022EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/10/30 12:0 a.m.12 views

Glamour Salon Management System 安全漏洞

Glamour Salon Management System is a salon management system by the individual developer Hiruna Gallage. A security vulnerability exists in Glamour Salon Management System v1, which stems from the blog comment section parameter in blog-details.php not being filtered correctly, which could lead to...

6.1CVSS6AI score0.0032EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/10/30 12:0 a.m.3 views

CVE-2025-50574

Cross-site scripting XSS vulnerability in blog-details.php in Hiruna Gallage's Glamour Salon Management System v1 allows remote attackers to inject arbitrary web script or HTML via the blog comment section parameter...

5.5AI score0.0032EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/10/28 9:1 p.m.5 views

CVE-2025-12325

A vulnerability has been found in SourceCodester Best Salon Management System 1.0. This affects an unknown part of the file /panel/forgot-password.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public...

9.8CVSS7.2AI score0.00454EPSS
Exploits1References1
CVE
CVE
added 2025/10/27 8:32 p.m.11 views

CVE-2025-12325

CVE-2025-12325 affects SourceCodester Best Salon Management System 1.0. The vulnerability is in panel/forgot-password.php where the email parameter is manipulated to cause SQL injection. It is exploitable remotely, and the exploit has been disclosed publicly. Public sources across multiple feeds ...

9.8CVSS6.8AI score0.00454EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/27 8:32 p.m.7 views

CVE-2025-12325 SourceCodester Best Salon Management System forgot-password.php sql injection

A vulnerability has been found in SourceCodester Best Salon Management System 1.0. This affects an unknown part of the file /panel/forgot-password.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public...

7.5CVSS6.8AI score0.00454EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.7 views

SourceCodester Best Salon Management System SQL注入漏洞

SourceCodester Best Salon Management System is a SourceCodester open source salon management system. A SQL injection vulnerability exists in SourceCodester Best Salon Management System version 1.0, which originates from the incorrect manipulation of the parameter email in the file...

9.8CVSS7.7AI score0.00454EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/10/27 12:0 a.m.6 views

PT-2025-44041

A vulnerability has been found in SourceCodester Best Salon Management System 1.0. This affects an unknown part of the file /panel/forgot-password.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public...

9.8CVSS7.2AI score0.00454EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/10/13 5:2 a.m.16 views

CVE-2025-11662 SourceCodester Best Salon Management System booking.php sql injection

A security flaw has been discovered in SourceCodester Best Salon Management System 1.0. Impacted is an unknown function of the file /booking.php. The manipulation of the argument servid results in sql injection. It is possible to launch the attack remotely. The exploit has been released to the...

7.5CVSS0.00441EPSS
Exploits1References5
NVD
NVD
added 2025/10/11 9:15 p.m.12 views

CVE-2025-11614

A vulnerability was identified in SourceCodester Best Salon Management System 1.0. Affected by this issue is some unknown functionality of the file /panel/edit-appointment.php. Such manipulation of the argument editid leads to sql injection. The attack may be launched remotely. The exploit is...

9.8CVSS0.00383EPSS
Exploits1References5
OSV
OSV
added 2025/10/11 9:15 p.m.4 views

CVE-2025-11614

A vulnerability was identified in SourceCodester Best Salon Management System 1.0. Affected by this issue is some unknown functionality of the file /panel/edit-appointment.php. Such manipulation of the argument editid leads to sql injection. The attack may be launched remotely. The exploit is...

9.8CVSS5.8AI score0.00383EPSS
Exploits1References5
Rows per page
Query Builder