CVE-2025-50574

Published
View on NVD ↗
CVSS v3
6.1
MEDIUM
CVSS v2
N/A
Affected
2
PROJECTS

Description

Cross-site scripting (XSS) vulnerability in blog-details.php in Hiruna Gallage's Glamour Salon Management System v1 allows remote attackers to inject arbitrary web script or HTML via the blog comment section parameter.

Kiezroy/XSS-Disclosure-Glamour-Salon
Kiezroy/XSS-Disclosure-Glamour-Salon
Stored Cross-Site Scripting (XSS) in Glamour Salon Management System
GitHubGitHub
2
hirunaofficial/salon-management-system
hirunaofficial/salon-management-system
The Glamour Salon Management System is a web-based platform for managing salon appointments, products, orders, and customer accounts. It provides an efficient way to handle customer interactions, staff scheduling, and online payments using the PayHere.
GitHubGitHub
7