{"id":7742,"date":"2025-07-07T14:07:09","date_gmt":"2025-07-07T14:07:09","guid":{"rendered":"http:\/\/localhost\/?p=7742"},"modified":"2025-07-07T14:07:09","modified_gmt":"2025-07-07T14:07:09","slug":"sourcecodester-best-salon-management-system-update-customer-details-page-edit-customer-detailedphp-c","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=7742","title":{"rendered":"SourceCodester Best Salon Management System Update Customer Details Page edit-customer-detailed.php cross site scripting"},"content":{"rendered":"
\n

CVE Details<\/h2>\n
\n
\n

Basic Information<\/h3>\n\n\n\n\n\n
Title<\/th>\nSourceCodester Best Salon Management System Update Customer Details Page edit-customer-detailed.php cross site scripting<\/td>\n<\/tr>\n
Type<\/th>\ncve<\/td>\n<\/tr>\n
Published<\/th>\n2025-07-07T18:02:06.780Z<\/td>\n<\/tr>\n
Modified<\/th>\n2025-07-07T18:28:09.107Z<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Product Information<\/h3>\n\n\n\n\n
Vendor<\/th>\nSourceCodester<\/td>\n<\/tr>\n
Product<\/th>\nBest Salon Management System<\/td>\n<\/tr>\n
Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n<\/div>\n
\n

CVSS Information<\/h3>\n\n\n\n
Base Score<\/th>\n4.8 (MEDIUM)<\/td>\n<\/tr>\n
Attack Vector<\/th>\nCVSS:4.0\/AV:N\/AC:L\/AT:N\/PR:H\/UI:P\/VC:N\/VI:L\/VA:N\/SC:N\/SI:N\/SA:N\/E:P<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

AI Analysis<\/h3>\n\n\n\n\n\n\n
AI Description<\/th>\nA cross-site scripting (XSS) vulnerability was discovered in SourceCodester’s Best Salon Management System version 1.0. This issue affects the Update Customer Details Page, allowing remote attackers to inject malicious scripts via the Name argument in edit-customer-detailed.php.<\/td>\n<\/tr>\n
AI Severity<\/th>\nMedium<\/td>\n<\/tr>\n
AI Vendor<\/th>\nSourceCodester<\/td>\n<\/tr>\n
AI Product<\/th>\nBest Salon Management System<\/td>\n<\/tr>\n
AI Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Affected Products<\/h4>\n