CVE-2025-7143 SourceCodester Best Salon Management System Update Tax Page edit-tax.php cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Best Salon Management System 1.0. This affects an unknown part of the file /panel/edit-tax.php of the component Update Tax Page. The manipulation of the argument Tax Name leads to cross site scripting. It is possibl...

CVE-2025-6879

CVE-2025-6879 affects SourceCodester Best Salon Management System 1.0. Multiple sources confirm a vulnerability in the file /panel/add-tax.php where manipulation of the Name parameter leads to SQL injection. The attack surface is remote, with high-severity implications (SQL injection could impact...

CVE-2022-32992

Online Tours And Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the tname parameter at /admin/operations/tax.php...

CVE-2024-35409

WeBid 1.1.2 is vulnerable to SQL Injection via admin/tax.php...

CVE-2024-35409

WeBid 1.1.2 is vulnerable to SQL Injection through the admin/tax.php endpoint. The root cause is a SQL query in admin/tax.php that permits unauthorized access to database information, leading to high impact on confidentiality, integrity, and availability (CVSS 3.1 base score 9.8). The connected P...

CVE-2022-32992

Online Tours And Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the tname parameter at /admin/operations/tax.php...

Sql injection

Online Tours And Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the tname parameter at /admin/operations/tax.php...

CVE-2022-32992

Online Tours And Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the tname parameter at /admin/operations/tax.php...