SQL Injection in add-services.php component of PHPGurukul Beauty Parlour Management System v1.0

SQL Injection in add-services.php component of PHPGurukul Beauty Parlour Management System v1.0

CVE-2021-27545 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

SQL Injection in the "add-services.php" component of PHPGurukul Beauty Parlour Management System v1.0 allows remote attackers to obtain sensitive database information by injecting SQL commands into the "sername" parameter.

Learn more about our Web Application Penetration Testing UK.