Vulnerabilities > Salonerp Project

DATE	CVE	VULNERABILITY TITLE	RISK
2022-11-03	CVE-2022-42753	Cross-site Scripting vulnerability in Salonerp Project Salonerp 3.0.2 SalonERP version 3.0.2 allows an external attacker to steal the cookie of arbitrary users. network low complexity salonerp-project CWE-79	6.1
2022-01-14	CVE-2021-45406	SQL Injection vulnerability in Salonerp Project Salonerp 3.0.1 In SalonERP 3.0.1, a SQL injection vulnerability allows an attacker to inject payload using 'sql' parameter in SQL query while generating a report. network low complexity salonerp-project CWE-89	6.5

Vulnerabilities > Salonerp Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Salonerp Project"}]}