Zeng

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Beauty Parlour Management System version 1.1 **Description** A security flaw exists in PHPGurukul Beauty Parlour Management System 1.1. The issue is a SQL injection affecting an unknown function within the `/admin/contact-us.php` file. The `mobnumber` argument can be manipulated to exploit this flaw remotely. The exploit has been publicly released. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** PHPGurukul Beauty Parlour Management System version 1.1 **Description** A SQL injection issue exists in PHPGurukul Beauty Parlour Management System 1.1. The vulnerability is located in the `/signup.php` file, within an unknown function. Manipulation of the `mobilenumber` parameter can lead to SQL injection. Remote exploitation is possible. The exploit is publicly available. Other parameters might also be affected. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.