| tiêu đề | Campcodes Complete Online Beauty Parlor Management System V1.0 SQL Injection |
|---|
| Mô tả | An XSS vulnerability was found in the '/admin/manage-services.php' file of the 'Complete Online Beauty Parlor Management System' project. The reason for this issue is that attackers inject malicious script code from the parameter 'sername' and the system outputs the user input directly to the web page without appropriate encoding or filtering. This allows attackers to execute arbitrary script code in the victim's browser, thereby performing unauthorized operations. |
|---|
| Nguồn | ⚠️ https://github.com/HYLCXH/CVE/issues/12 |
|---|
| Người dùng | HanyuLuo (UID 91509) |
|---|
| Đệ trình | 10/10/2025 16:39 (cách đây 8 các tháng) |
|---|
| Kiểm duyệt | 12/10/2025 10:10 (2 days later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 328082 [Campcodes Online Beauty Parlor Management System 1.0 manage-services.php sername Tiêm SQL] |
|---|
| điểm | 20 |
|---|