EIP-2026-105435

This writeup describes an SQL injection vulnerability in Beauty Salon Management System v1.0, allowing authentication bypass via crafted payloads in the username field. It includes sqlmap results confirming boolean-based and time-based blind SQLi.