CVE-2025-7140 | SourceCodester Best Salon Management System 1.0 Update Staff Page /panel/edit-staff.php Staff Name cross site scripting

Inserito da Angelo Barbosa | Lug 6, 2025 | CVE

A vulnerability classified as problematic has been found in SourceCodester Best Salon Management System 1.0. Affected is an unknown function of the file /panel/edit-staff.php of the component Update Staff Page. The manipulation of the argument Staff Name leads to cross site scripting.

This vulnerability is traded as CVE-2025-7140. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2025-7140 | SourceCodester Best Salon Management System 1.0 Update Staff Page /panel/edit-staff.php Staff Name cross site scripting

Post correlati

CVE-2024-35049 | SurveyKing 1.3.1 Incomplete Fix CVE-2022-25590 session expiration

CVE-2025-1540 | GitLab Community Edition/Enterprise Edition up to 17.6.4/17.7.3/17.8.1 Internal Project authorization

CVE-2024-10419 | code-projects Blood Bank Management System 1.0 /bloodrequest.php msg cross site scripting

CVE-2024-4190 | OpenText ArcSight Logger up to 7.3.0 P3 cross site scripting