CVE-2026-26886

Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /admin/services/manageservice.php...

CVE-2026-26885

Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /classes/Master.php?f=deleteservice...

CVE-2026-26883

Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /msms/classes/Master.php?f=deleteappointment...

CVE-2026-26883

Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /msms/classes/Master.php?f=deleteappointment...

CVE-2026-26886

Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /admin/services/manageservice.php...

CVE-2026-26883

Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /msms/classes/Master.php?f=deleteappointment...

CVE-2026-26884

The CVE describes a SQL Injection vulnerability in Sourcecodester Online Men’s Salon Management System v1.0, specifically affecting the PHP endpoint /msms/admin/appointments/view_appointment.php. The affected component is the appointments view logic, with the root cause identified as an injection...

CVE-2026-26883

CVE-2026-26883 affects Sourcecodester Online Men’s Salon Management System v1.0. Affected component: SQL injection vulnerability in /msms/classes/Master.php?f=delete_appointment due to unsanitized input. Reported across multiple sources (NVD, Red Hat, CVE List, etc.). CVSS v3.1 vector: AV:N/AC:L/...

CVE-2025-50574

Cross-site scripting XSS vulnerability in blog-details.php in Hiruna Gallage's Glamour Salon Management System v1 allows remote attackers to inject arbitrary web script or HTML via the blog comment section parameter...

CVE-2025-50574

Cross-site scripting XSS vulnerability in blog-details.php in Hiruna Gallage's Glamour Salon Management System v1 allows remote attackers to inject arbitrary web script or HTML via the blog comment section parameter...

EUVD-2025-33962

A security flaw has been discovered in SourceCodester Best Salon Management System 1.0. Impacted is an unknown function of the file /booking.php. The manipulation of the argument servid results in sql injection. It is possible to launch the attack remotely. The exploit has been released to the...

CVE-2025-11614

SourceCodester Best Salon Management System 1.0 is affected by an SQL injection in /panel/edit-appointment.php via the editid parameter. The issue is exploitable remotely and is supported by publicly available exploits; multiple sources confirm impact on confidentiality, integrity, and availabili...

EUVD-2023-44500

Malicious code in bioql PyPI...

CVE-2025-7141

A vulnerability classified as problematic was found in SourceCodester Best Salon Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /panel/editplan.php of the component Update Staff Page. The manipulation leads to cross site scripting. The attack can be...

CVE-2025-7138 SourceCodester Best Salon Management System admin-profile.php sql injection

A vulnerability was found in SourceCodester Best Salon Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /panel/admin-profile.php. The manipulation of the argument adminname leads to sql injection. The attack can be initiated remotely. Th...

CVE-2025-6880

A vulnerability classified as critical has been found in SourceCodester Best Salon Management System 1.0. Affected is an unknown function of the file /panel/edit-tax.php. The manipulation of the argument editid leads to sql injection. It is possible to launch the attack remotely. The exploit has...

CVE-2025-6874

A vulnerability, which was classified as critical, was found in SourceCodester Best Salon Management System 1.0. Affected is an unknown function of the file /panel/addsubscribe.php. The manipulation of the argument userid/planid leads to sql injection. It is possible to launch the attack remotely...

CVE-2025-6606

A vulnerability, which was classified as critical, has been found in SourceCodester Best Salon Management System 1.0. This issue affects some unknown processing of the file /panel/add-services.php. The manipulation of the argument Type leads to sql injection. The attack may be initiated remotely...

PHPGurukul Men Salon Management System 安全漏洞

PHPGurukul Men Salon Management System is a men's salon management system from PHPGurukul Inc. A security vulnerability exists in version 1.0 of the PHPGurukul Men Salon Management System, which is caused by a SQL injection due to an incorrect manipulation of the parameter cost in file...

PHPGurukul Men Salon Management System 注入漏洞

PHPGurukul Men Salon Management System is a men's salon management system from PHPGurukul. An injection vulnerability exists in version 1.0 of the PHPGurukul Men Salon Management System, which results from SQL injection due to incorrect manipulation of the editid parameter in the file...