CVE-2025-7144 | SourceCodester Best Salon Management System 1.0 Admin Profile Page /panel/admin-profile.php Admin Name cross site scripting

Inserito da Angelo Barbosa | Lug 6, 2025 | CVE

A vulnerability has been found in SourceCodester Best Salon Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /panel/admin-profile.php of the component Admin Profile Page. The manipulation of the argument Admin Name leads to cross site scripting.

This vulnerability was named CVE-2025-7144. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-7144 | SourceCodester Best Salon Management System 1.0 Admin Profile Page /panel/admin-profile.php Admin Name cross site scripting

Post correlati

CVE-2025-4305 | kefaming mayi up to 1.3.9 File.php upload File unrestricted upload

CVE-2023-49274 | Umbraco CMS up to 8.18.9 Reset Password information disclosure (GHSA-8qp8-9rpw-j46c)

CVE-2024-27936 | Deno deno_runtime ANSI improper restriction of rendered ui layers

CVE-2024-8525 | Automated Logic WebCTRL 7.0 HTTP POST Request unrestricted upload