CVE-2025-50574

Published: Oct 30, 2025

Modified: Nov 4, 2025

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in blog-details.php in Hiruna Gallage's Glamour Salon Management System v1 allows remote attackers to inject arbitrary web script or HTML via the blog comment section parameter.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/Kiezroy/XSS-Disclosure-Glamour-Salon

https://github.com/hirunaofficial/salon-management-system

https://gist.github.com/Kiezroy/3396b04389c0b91815e538590167f670

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-50574

Description

Affected Products

References