Sibi B

2 exploits Active since Dec 2024
CVE-2024-53480 WRITEUP CRITICAL WRITEUP
Phpgurukul Beauty Parlour Management System 1.1 - SQL Injection via login.php emailcont Parameter
Phpgurukul's Beauty Parlour Management System v1.1 is vulnerable to SQL Injection in `login.php` via the `emailcont` parameter.
CVSS 9.8
CVE-2024-53481 WRITEUP MEDIUM WRITEUP
PHPGurukul Beauty Parlour Management System 1.1 - Stored Cross-Site Scripting via Firstname and Lastname Parameters
A Cross Site Scripting (XSS) vulnerability in the profile.php of PHPGurukul Beauty Parlour Management System v1.1 allows remote attackers to execute arbitrary code by injecting arbitrary HTML into the "Firstname" and "Last name" parameters.
CVSS 6.1