cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-27545,https://securityvulnerability.io/vulnerability/CVE-2021-27545,SQL Injection Vulnerability in PHPGurukul Beauty Parlour Management System,"The SQL Injection vulnerability occurs in the 'add-services.php' component of PHPGurukul Beauty Parlour Management System v1.0. This flaw allows remote attackers to exploit the application by injecting malicious SQL commands through the 'sername' parameter. Successful exploitation can lead to unauthorized access to sensitive database information, posing a significant risk to user data integrity.",PHPgurukul,Beauty Parlour Management System,6.5,MEDIUM,0.2818799912929535,false,,false,false,false,,,false,false,,2021-04-15T11:54:21.000Z,0
CVE-2021-27544,https://securityvulnerability.io/vulnerability/CVE-2021-27544,Cross Site Scripting Vulnerability in PHPGurukul Beauty Parlour Management System,"The Beauty Parlour Management System version 1.0 contains a Cross Site Scripting (XSS) vulnerability in the 'add-services.php' component, which allows remote attackers to inject arbitrary HTML and execute arbitrary code via the 'sername' parameter. This flaw can potentially compromise user data and lead to unauthorized access, emphasizing the necessity for prompt remedial actions.",PHPgurukul,Beauty Parlour Management System,4.8,MEDIUM,0.0016599999507889152,false,,false,false,false,,,false,false,,2021-04-15T11:53:36.000Z,0