Approved changes feed: RSS · Atom

cpe:2.3:a:1000projects:beauty_parlour_management_system:1.0:*:*:*:*:*:*:*

part: a version: 1.0 update: *

Vendor1000Projects (fbc50d54-0232-5a03-8335-413f2b70065f)
ProductBeauty Parlour Management System (fbd4d683-e678-5f69-9e96-d91e9e65a5d1)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-9930 vulnerable 2026-06-08 07:47:10.295668 1000projects Beauty Parlour Management System contact-us.php sql injection
HIGH (7.3)
A security vulnerability has been detected in 1000projects Beauty Parlour Management System 1.0. This impacts an unknown function of the file /admin/contact-us.php. The manipulation of the argument mobnumber leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed publicly and may be used.
Published: 2025-09-03T21:32:09.494Z
Updated: 2025-09-04T19:58:49.699Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-9919 vulnerable 2026-06-08 07:47:10.275233 1000projects Beauty Parlour Management System bwdates-reports-details.php sql injection
HIGH (7.3)
A vulnerability was identified in 1000projects Beauty Parlour Management System 1.0. This affects an unknown function of the file /admin/bwdates-reports-details.php. The manipulation of the argument fromdate/todate leads to sql injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be used.
Published: 2025-09-03T16:02:09.119Z
Updated: 2025-09-03T19:12:45.598Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-13072 vulnerable 2026-06-08 06:25:36.645902 1000 Projects Beauty Parlour Management System Customer Detail add-customer-services.php sql injection
MEDIUM (6.3)
A vulnerability was found in 1000 Projects Beauty Parlour Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/add-customer-services.php of the component Customer Detail Handler. The manipulation of the argument sids[] leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Published: 2024-12-31T15:00:11.315Z
Updated: 2024-12-31T15:53:19.078Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-12234 vulnerable 2026-06-08 06:23:51.490574 1000 Projects Beauty Parlour Management System edit-customer-detailed.php sql injection
HIGH (7.3)
A vulnerability was found in 1000 Projects Beauty Parlour Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/edit-customer-detailed.php. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.
Published: 2024-12-05T17:00:13.812Z
Updated: 2024-12-06T16:02:59.135Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-11649 vulnerable 2026-06-08 06:23:50.066579 1000 Projects Beauty Parlour Management System search-appointment.php sql injection
HIGH (7.3)
A vulnerability has been found in 1000 Projects Beauty Parlour Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/search-appointment.php. The manipulation of the argument searchdata leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Published: 2024-11-25T01:31:04.325Z
Updated: 2024-11-26T21:30:48.630Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-11648 vulnerable 2026-06-08 06:23:50.065997 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-11647 vulnerable 2026-06-08 06:23:50.065449 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-11646 vulnerable 2026-06-08 06:23:50.064560 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-11592 vulnerable 2026-06-08 06:23:49.917526 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-11591 vulnerable 2026-06-08 06:23:49.916717 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-11258 vulnerable 2026-06-08 06:23:49.239494 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-11257 vulnerable 2026-06-08 06:23:49.236630 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-11101 vulnerable 2026-06-08 06:23:48.747311 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-11100 vulnerable 2026-06-08 06:23:48.746447 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-11055 vulnerable 2026-06-08 06:23:48.626128 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.