SQL Injection vulnerability in PHPGurukul Men Salon Management System v.2.0, allows remote attackers to execute arbitrary code and obtain sensitive information via the email parameter in the index.php component.
References
| Link | Resource |
|---|---|
| https://github.com/efekaanakkar/CVEs/blob/main/PHPGurukul-Men-Salon-Management-System-2.0.md | Exploit Third Party Advisory |
| https://github.com/efekaanakkar/CVEs/blob/main/PHPGurukul-Men-Salon-Management-System-2.0.md | Exploit Third Party Advisory |
Configurations
History
08 Apr 2025, 15:43
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/efekaanakkar/CVEs/blob/main/PHPGurukul-Men-Salon-Management-System-2.0.md - Exploit, Third Party Advisory | |
| First Time |
Phpgurukul men Salon Management System
Phpgurukul |
|
| CPE | cpe:2.3:a:phpgurukul:men_salon_management_system:2.0:*:*:*:*:*:*:* |
21 Nov 2024, 09:12
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://github.com/efekaanakkar/CVEs/blob/main/PHPGurukul-Men-Salon-Management-System-2.0.md - |
01 Aug 2024, 14:35
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-89 | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
03 Apr 2024, 06:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-04-03 06:15
Updated : 2025-04-08 15:43
NVD link : CVE-2024-30998
Mitre link : CVE-2024-30998
CVE.ORG link : CVE-2024-30998
JSON object : View
Products Affected
phpgurukul
- men_salon_management_system
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')