Email Parameter Vulnerability Exposes Men Salon Management System to SQL Injection Attacks
CVE-2024-30998

Currently unrated

Key Information:

Vendor: PHPGurukul
Status: Men Salon Management System
Vendor: CVE Published:; 3 April 2024

What is CVE-2024-30998?

SQL Injection vulnerability in PHPGurukul Men Salon Management System v.2.0, allows remote attackers to execute arbitrary code and obtain sensitive information via the email parameter in the index.php component.

References

https://github.com/efekaanakkar/CVEs/blob/main/PHPGurukul...

EPSS Score

7% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 3, 2024