Home
Description
Beauty Parlour Management System v1.1 was discovered to contain a SQL injection vulnerability via the aptnumber parameter in the /appointment-detail.php endpoint. This vulnerability allows attackers to access sensitive database information via a crafted SQL statement.
References
github.com/...y Parlour Management System/SQL Injection-2.md
github.com/...y Parlour Management System/SQL Injection-2.md