| Title | Anuj Kumar Beauty Parlour Management System 1.1 SQL Injection |
|---|
| Description | Vulnerability Location: /forgot-password.php
Affected Range: Beauty Parlour Management System V1.1
Vulnerability Cause: forgot-password.php contains a serious security vulnerability. The manipulation of the argument contactno leads to sql injection. The attack can be launched remotely.
Vulnerability Impact: Obtain database access rights, and even DBA permissions;
Link: https://phpgurukul.com/beauty-parlour-management-system-using-php-and-mysql/ |
|---|
| Source | ⚠️ https://github.com/Y4y17/CVE/blob/main/Beauty%20Parlour%20Management%20System/SQL%20Injection-3.md |
|---|
| User | Y4y17 (UID 96959) |
|---|
| Submission | 04/02/2026 03:04 (9 days ago) |
|---|
| Moderation | 04/09/2026 16:23 (8 days later) |
|---|
| Status | Duplicate |
|---|
| VulDB entry | 309059 [PHPGurukul Beauty Parlour Management System 1.1 /forgot-password.php email sql injection] |
|---|
| Points | 0 |
|---|