Lucene search
K

39 matches found

RedhatCVE
RedhatCVE
added 2025/10/14 5:40 a.m.7 views

CVE-2025-11662

A security flaw has been discovered in SourceCodester Best Salon Management System 1.0. Impacted is an unknown function of the file /booking.php. The manipulation of the argument servid results in sql injection. It is possible to launch the attack remotely. The exploit has been released to the...

9.8CVSS7.5AI score0.00431EPSS
Exploits1References1
OSV
OSV
added 2025/10/13 5:15 a.m.3 views

CVE-2025-11662

A security flaw has been discovered in SourceCodester Best Salon Management System 1.0. Impacted is an unknown function of the file /booking.php. The manipulation of the argument servid results in sql injection. It is possible to launch the attack remotely. The exploit has been released to the...

9.8CVSS5.7AI score0.00431EPSS
Exploits1References5
NVD
NVD
added 2025/10/13 5:15 a.m.9 views

CVE-2025-11662

A security flaw has been discovered in SourceCodester Best Salon Management System 1.0. Impacted is an unknown function of the file /booking.php. The manipulation of the argument servid results in sql injection. It is possible to launch the attack remotely. The exploit has been released to the...

9.8CVSS0.00431EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/10/13 12:0 a.m.8 views

SourceCodester Best Salon Management System SQL注入漏洞

SourceCodester Best Salon Management System is a SourceCodester open source salon management system. SourceCodester Best Salon Management System version 1.0 has a SQL injection vulnerability, the vulnerability stems from the incorrect operation of the parameter servid in the file /booking.php,...

9.8CVSS7.9AI score0.00431EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/10/11 9:32 p.m.5 views

CVE-2025-11615 SourceCodester Best Salon Management System add_invoice.php sql injection

A security flaw has been discovered in SourceCodester Best Salon Management System 1.0. This affects an unknown part of the file /panel/addinvoice.php. Performing manipulation of the argument ServiceId results in sql injection. Remote exploitation of the attack is possible. The exploit has been...

7.5CVSS6.5AI score0.00425EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-19097

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00361EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-19501

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00361EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/07/09 8:23 p.m.8 views

CVE-2025-7142

A vulnerability, which was classified as problematic, has been found in SourceCodester Best Salon Management System 1.0. Affected by this issue is some unknown functionality of the file /panel/search-appointment.php. The manipulation leads to cross site scripting. The attack may be launched...

5.4CVSS6.5AI score0.00267EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/07/09 5:3 p.m.6 views

CVE-2025-7137

A vulnerability was found in SourceCodester Best Salon Management System 1.0. It has been classified as critical. This affects an unknown part of the file /panel/schedule-staff.php. The manipulation of the argument staffid leads to sql injection. It is possible to initiate the attack remotely. Th...

8.8CVSS6.7AI score0.00361EPSS
Exploits1References1
OSV
OSV
added 2025/07/07 9:15 p.m.6 views

CVE-2025-7144

A vulnerability has been found in SourceCodester Best Salon Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /panel/admin-profile.php of the component Admin Profile Page. The manipulation of the argument Admin Name leads to cross site...

4.8CVSS3.6AI score0.0028EPSS
Exploits1References5
CVE
CVE
added 2025/07/07 8:2 p.m.24 views

CVE-2025-7143

CVE-2025-7143 affects SourceCodester Best Salon Management System 1.0, impacting the /panel/edit-tax.php file in the Update Tax Page. The vulnerability is a cross‑site scripting flaw triggered by manipulating the Tax Name parameter, allowing remote initiation. Exploitation is disclosed publicly i...

5.4CVSS6.4AI score0.00267EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2025/07/07 7:2 p.m.11 views

CVE-2025-7141 SourceCodester Best Salon Management System Update Staff Page edit_plan.php cross site scripting

A vulnerability classified as problematic was found in SourceCodester Best Salon Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /panel/editplan.php of the component Update Staff Page. The manipulation leads to cross site scripting. The attack can be...

4.8CVSS0.00267EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/07/07 6:32 p.m.5 views

CVE-2025-7140 SourceCodester Best Salon Management System Update Staff Page edit-staff.php cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Best Salon Management System 1.0. Affected is an unknown function of the file /panel/edit-staff.php of the component Update Staff Page. The manipulation of the argument Staff Name leads to cross site scripting. It is...

4.8CVSS6.5AI score0.00267EPSS
Exploits1References5
CVE
CVE
added 2025/07/07 6:2 p.m.22 views

CVE-2025-7139

CVE-2025-7139 affects SourceCodester Best Salon Management System 1.0. The issue resides in the Update Customer Details Page, specifically the /panel/edit-customer-detailed.php file where the Name parameter is manipulated to trigger cross-site scripting. Exploitation can be remote, and public dis...

5.4CVSS3.4AI score0.00267EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2025/07/07 5:32 p.m.21 views

CVE-2025-7138

CVE-2025-7138 affects SourceCodester Best Salon Management System 1.0. The vulnerability is an SQL injection in the file /panel/admin-profile.php via the manipulated parameter adminname . It is a remote, unauthenticated risk with public exploit disclosure. Multiple scoring references exist (NVD C...

8.8CVSS6.8AI score0.00361EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2025/07/07 12:0 a.m.3 views

SourceCodester Best Salon Management System 代码注入漏洞

SourceCodester Best Salon Management System is a SourceCodester open source salon management system. A code injection vulnerability exists in SourceCodester Best Salon Management System version 1.0, which originates from an incorrect operation of the file /panel/editplan.php and could lead to a...

5.4CVSS4.3AI score0.00267EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/07/07 12:0 a.m.3 views

SourceCodester Best Salon Management System 注入漏洞

SourceCodester Best Salon Management System is a SourceCodester open source salon management system. SourceCodester Best Salon Management System version 1.0 suffers from an injection vulnerability that originates from improper handling of the parameter staffid in the file /panel/schedule-staff.ph...

8.8CVSS6.9AI score0.00361EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/07/07 12:0 a.m.4 views

SourceCodester Best Salon Management System 代码注入漏洞

SourceCodester Best Salon Management System is SourceCodester open source a salon management system. A code injection vulnerability exists in version 1.0 of the SourceCodester Best Salon Management System, which originates from an incorrect manipulation of the parameter Staff Name in the file...

5.4CVSS4.1AI score0.00267EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/07/07 12:0 a.m.4 views

PT-2025-28256 · Sourcecodester · Sourcecodester Best Pos Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Best Salon Management System version 1.0 Description: A problematic issue was found in the Update Tax Page component, specifically affecting the /panel/edit-tax.php file. The manipulation of the Tax Name argument leads to...

5.4CVSS3.2AI score0.00267EPSS
Exploits1References8
CNNVD
CNNVD
added 2025/07/07 12:0 a.m.7 views

SourceCodester Best Salon Management System 代码注入漏洞

SourceCodester Best Salon Management System is SourceCodester open source a salon management system. A code injection vulnerability exists in version 1.0 of the SourceCodester Best Salon Management System, which stems from an incorrect manipulation of the parameter Tax Name in the file...

5.4CVSS4.1AI score0.00267EPSS
Exploits1References6
Rows per page
Query Builder