Keason

1 exploit Active since Oct 2025
CVE-2025-12325 WRITEUP HIGH WRITEUP
Best Salon Management System 1.0 - SQL Injection via Forgot Password Email Parameter
A vulnerability has been found in SourceCodester Best Salon Management System 1.0. This affects an unknown part of the file /panel/forgot-password.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
CVSS 7.3