MidnightBSD

Advisories for hiruna

CVE-2025-50574

Cross-site scripting (XSS) vulnerability in blog-details.php in Hiruna Gallage's Glamour Salon Management System v1 allows remote attackers to inject arbitrary web script or HTML via the blog comment section parameter.

Products Affected

Vendor Product Version
hiruna glamour_salon_management_system 1.0