CVE-2025-7140 | SourceCodester Best Salon Management System 1.0 Update Staff Page /panel/edit-staff.php Staff Name cross site scripting

Inserito da Angelo Barbosa | Lug 6, 2025 | CVE

A vulnerability classified as problematic has been found in SourceCodester Best Salon Management System 1.0. Affected is an unknown function of the file /panel/edit-staff.php of the component Update Staff Page. The manipulation of the argument Staff Name leads to cross site scripting.

This vulnerability is traded as CVE-2025-7140. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2025-7140 | SourceCodester Best Salon Management System 1.0 Update Staff Page /panel/edit-staff.php Staff Name cross site scripting

Post correlati

CVE-2023-41673 | Fortinet FortiADC up to 7.4.0 System Configuration improper authorization (FG-IR-23-270)

CVE-2024-22830 | Anti-Cheat Expert Kernel Module 1.0.2202.6217 on Windows ACE-BASE.sys access control

CVE-2024-11197 | babatechs Lock User Account Plugin up to 1.0.5 on WordPress protection mechanism

CVE-2024-34897 | Nedis SmartLife App 1.4.0 on Android API Key information disclosure