Huangtianyu

**Name of the Vulnerable Software and Affected Versions** SourceCodester Best Salon Management System version 1.0 **Description** A security flaw exists in SourceCodester Best Salon Management System 1.0. The issue is a SQL injection impacting an unknown function within the `/booking.php` file. The `serv id` parameter is susceptible to manipulation, potentially allowing attackers to execute arbitrary SQL commands remotely. The exploit has been publicly released. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.