CVE-2025-6581 | SourceCodester Best Salon Management System 1.0 /add-customer.php sql injection

Inserito da Angelo Barbosa | Giu 24, 2025 | CVE

A vulnerability classified as critical was found in SourceCodester Best Salon Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /add-customer.php. The manipulation of the argument name/email/mobilenum/gender/details/dob/marriage_date leads to sql injection.

This vulnerability is known as CVE-2025-6581. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2025-6581 | SourceCodester Best Salon Management System 1.0 /add-customer.php sql injection

Post correlati

CVE-2025-24982 | SWIT Activity Log WinterLock Plugin up to 1.2.4 on WordPress cross-site request forgery

CVE-2024-36773 | Monstra CMS 3.0.4 index.php Themes cross site scripting

CVE-2024-44115 | SAP NetWeaver Application Server for ABAP and ABAP Platform RFC Enabled Function Module authorization

CVE-2022-4533 | Limit Login Attempts Plus Plugin up to 1.1.0 on WordPress protection mechanism