SQL Injection in Men's Salon Management System

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

2.7

SQL Injection in Men's Salon Management System

CVE-2026-26885

Summary

The Men's Salon Management System is vulnerable to a security threat that could allow an attacker to access or modify sensitive data. This poses a risk to the confidentiality and integrity of customer information and other sensitive data stored in the system. To protect your data, update the system to a secure version or seek assistance from a security expert to patch the vulnerability.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
oretnom23	simple_online_men\'s_salon_management_system	1.0	–

Original title

Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /classes/Master.php?f=delete_service.

Original description

Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /classes/Master.php?f=delete_service.

nvd CVSS3.1 2.7

Vulnerability type

CWE-89 SQL Injection

https://github.com/shininadd/bug_report/blob/main/Sourcecodester/simple-online-m... Exploit Third Party Advisory

Published: 3 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026