112 matches found
CVE-2025-7141 SourceCodester Best Salon Management System Update Staff Page edit_plan.php cross site scripting
A vulnerability classified as problematic was found in SourceCodester Best Salon Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /panel/editplan.php of the component Update Staff Page. The manipulation leads to cross site scripting. The attack can be...
CVE-2025-7140 SourceCodester Best Salon Management System Update Staff Page edit-staff.php cross site scripting
A vulnerability classified as problematic has been found in SourceCodester Best Salon Management System 1.0. Affected is an unknown function of the file /panel/edit-staff.php of the component Update Staff Page. The manipulation of the argument Staff Name leads to cross site scripting. It is...
CVE-2025-7139
CVE-2025-7139 affects SourceCodester Best Salon Management System 1.0. The issue resides in the Update Customer Details Page, specifically the /panel/edit-customer-detailed.php file where the Name parameter is manipulated to trigger cross-site scripting. Exploitation can be remote, and public dis...
CVE-2025-7138
CVE-2025-7138 affects SourceCodester Best Salon Management System 1.0. The vulnerability is an SQL injection in the file /panel/admin-profile.php via the manipulated parameter adminname . It is a remote, unauthenticated risk with public exploit disclosure. Multiple scoring references exist (NVD C...
SourceCodester Best Salon Management System 代码注入漏洞
SourceCodester Best Salon Management System is SourceCodester open source a salon management system. A code injection vulnerability exists in version 1.0 of the SourceCodester Best Salon Management System, which stems from an incorrect manipulation of the parameter Tax Name in the file...
SourceCodester Best Salon Management System 代码注入漏洞
SourceCodester Best Salon Management System is SourceCodester open source a salon management system. A code injection vulnerability exists in version 1.0 of the SourceCodester Best Salon Management System, which originates from an incorrect manipulation of the parameter Staff Name in the file...
PT-2025-28256 · Sourcecodester · Sourcecodester Best Pos Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Best Salon Management System version 1.0 Description: A problematic issue was found in the Update Tax Page component, specifically affecting the /panel/edit-tax.php file. The manipulation of the Tax Name argument leads to...
SourceCodester Best Salon Management System 代码注入漏洞
SourceCodester Best Salon Management System is a SourceCodester open source salon management system. A code injection vulnerability exists in SourceCodester Best Salon Management System version 1.0, which originates from an incorrect operation of the file /panel/editplan.php and could lead to a...
SourceCodester Best Salon Management System 注入漏洞
SourceCodester Best Salon Management System is a SourceCodester open source salon management system. SourceCodester Best Salon Management System version 1.0 suffers from an injection vulnerability that originates from improper handling of the parameter staffid in the file /panel/schedule-staff.ph...
PT-2025-28242 · Sourcecodester · Sourcecodester Best Pos Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Best Salon Management System version 1.0 Description: A problematic issue exists due to cross site scripting. The manipulation of the Name argument in the processing of the file /panel/edit-customer-detailed.php within the Upda...
CVE-2025-6878
A vulnerability was found in SourceCodester Best Salon Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /panel/search-appointment.php. The manipulation of the argument searchdata leads to sql injection. The attack can be initiated...
CVE-2025-6876
The CVE-2025-6876 entry affects SourceCodester Best Salon Management System 1.0. The vulnerability is a SQL injection in the file /panel/add-category.php, triggered by manipulating the Name argument in an unknown function, with remote attack capability. Public exploit information is noted by sour...
CVE-2025-6874 SourceCodester Best Salon Management System add_subscribe.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Best Salon Management System 1.0. Affected is an unknown function of the file /panel/addsubscribe.php. The manipulation of the argument userid/planid leads to sql injection. It is possible to launch the attack remotely...
PT-2025-27387 · Sourcecodester · Sourcecodester Best Pos Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Best Salon Management System version 1.0 Description: A critical issue has been discovered, affecting an unknown functionality of the file /panel/edit-subscription.php. The manipulation of the editid argument leads to SQL...
SourceCodester Best Salon Management System 注入漏洞
SourceCodester Best Salon Management System is a SourceCodester open source salon management system. SourceCodester Best Salon Management System version 1.0 has an injection vulnerability, the vulnerability stems from the wrong operation of the parameter fromdate/todate in the file...
SourceCodester Best Salon Management System 注入漏洞
SourceCodester Best Salon Management System is SourceCodester open source a salon management system. SourceCodester Best Salon Management System version 1.0 has an injection vulnerability , the vulnerability stems from the wrong operation of the parameters planname/description/durationdays/price ...
PT-2025-27368 · Unknown · Sourcecodester Best Pos Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Best Salon Management System version 1.0 Description: A critical vulnerability has been found in the SourceCodester Best Salon Management System. The issue affects an unknown function of the file /panel/edit plan.php. The...
CVE-2025-6607
A vulnerability, which was classified as critical, was found in SourceCodester Best Salon Management System 1.0. Affected is an unknown function of the file /panel/stock.php. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has...
CVE-2025-6607 SourceCodester Best Salon Management System stock.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Best Salon Management System 1.0. Affected is an unknown function of the file /panel/stock.php. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has...
CVE-2025-6583
A vulnerability, which was classified as critical, was found in SourceCodester Best Salon Management System 1.0. This affects an unknown part of the file /view-appointment.php. The manipulation of the argument viewid leads to sql injection. It is possible to initiate the attack remotely. The...