Online Salon Management System SQL Injection Vulnerability

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

2.7

Online Salon Management System SQL Injection Vulnerability

CVE-2026-26883

Summary

The Online Men's Salon Management System is open to a security threat that could allow an attacker to access sensitive data. This could happen if an attacker inserts malicious code into the system, potentially causing unauthorized access or data changes. To protect your business, update the system to the latest version or apply security patches as soon as possible.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
oretnom23	simple_online_men\'s_salon_management_system	1.0	–

Original title

Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /msms/classes/Master.php?f=delete_appointment.

Original description

Sourcecodester Online Men's Salon Management System v1.0 is vulnerable to SQL Injection in /msms/classes/Master.php?f=delete_appointment.

nvd CVSS3.1 2.7

Vulnerability type

CWE-89 SQL Injection

https://github.com/shininadd/bug_report/blob/main/Sourcecodester/simple-online-m... Exploit Third Party Advisory

Published: 3 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026