Campcodes Complete Online Beauty Parlor Management System search-invoices.php cross site...

4.8 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P

Description

A vulnerability was determined in Campcodes Complete Online Beauty Parlor Management System 1.0. This vulnerability affects unknown code of the file /admin/search-invoices.php. Executing manipulation of the argument searchdata can lead to cross site scripting. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized.

Basic Information

ID CVE-2025-15188

Source VulDB

Published Dec 29, 2025 at 12:32

Affected Product

Vendor Campcodes

Product Complete Online Beauty Parlor Management System

Version 1.0

Affected Versions Campcodes Complete Online Beauty Parlor Management System 1.0

CWE Classification

CWE-79 CWE-94

References

{
    "lastseen": "",
    "description": "A vulnerability was determined in Campcodes Complete Online Beauty Parlor Management System 1.0. This vulnerability affects unknown code of the file /admin/search-invoices.php. Executing manipulation of the argument searchdata can lead to cross site scripting. The attack can be launched remotely. The exploit has been publicly disclosed and may be utilized.",
    "published": "2025-12-29T12:32:06.935Z",
    "modified": "2025-12-29T12:32:06.935Z",
    "type": "cve",
    "title": "Campcodes Complete Online Beauty Parlor Management System search-invoices.php cross site scripting",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.338573\nhttps://vuldb.com/?ctiid.338573\nhttps://vuldb.com/?submit.721868\nhttps://github.com/BUPT2025201/CVE/issues/1\nhttps://www.campcodes.com/",
    "id": "CVE-2025-15188",
    "bulletinFamily": "",
    "cwe": [
        "CWE-79",
        "CWE-94"
    ],
    "cvelist": null,
    "sourceData": "Campcodes Complete Online Beauty Parlor Management System 1.0",
    "sourceHref": "",
    "cvss": {
        "score": 4.8,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Complete Online Beauty Parlor Management System",
    "version": "1.0",
    "vendor": "Campcodes",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Campcodes Complete Online Beauty Parlor Management System search-invoices.php cross site scripting_CVE-2025-15188