CVE-2025-7139

Sažetak

A vulnerability was found in SourceCodester Best Salon Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /panel/edit-customer-detailed.php of the component Update Customer Details Page. The manipulation of the argument Name leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Reference

https://github.com/Colorado-all/cve/blob/main/Best%20salon%20management%20system/xss-1.md
https://vuldb.com/?ctiid.315053
https://vuldb.com/?id.315053
https://vuldb.com/?submit.605986
https://www.sourcecodester.com/
https://github.com/Colorado-all/cve/blob/main/Best%20salon%20management%20system/xss-1.md

CVSS

Base:	3.3
Impact:	2.9
Exploitability:	6.4

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	MULTIPLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:L/Au:M/C:N/I:P/A:N

Zadnje važnije ažuriranje

09-07-2025 - 15:28

Objavljeno

07-07-2025 - 18:15