Janobe Baby_care_system
23 CVEs affecting Janobe Baby_care_system. Latest disclosed: 2025-11-10. Critical: 19, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-28439 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/uesrs.php&&action=delete&userid=4. |
CVE-2022-28438 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/uesrs.php&action=type&userrole=User&userid=. |
CVE-2022-28437 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/uesrs.php&action=type&userrole=Admin&userid=3. |
CVE-2022-28436 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/uesrs.php&action=display&value=Hide&userid=. |
CVE-2022-28435 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/siteoptions.php&action=displaygoal&value=1&roleid=1. |
CVE-2022-28434 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin.php?id=siteoptions&social=edit&sid=2. |
CVE-2022-28433 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/uesrs.php&action=display&value=Show&userid=. |
CVE-2022-28432 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin.php?id=siteoptions&social=display&value=0&sid=2. |
CVE-2022-28431 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/siteoptions.php&social=remove&sid=2. |
CVE-2022-28429 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/inbox.php&action=delete&msgid=. |
CVE-2022-28427 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/inbox.php&action=read&msgid=. |
CVE-2022-28426 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/pagerole.php&action=edit&roleid=. |
CVE-2022-28425 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/pagerole.php&action=display&value=1&roleid=. |
CVE-2022-28424 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/posts.php&find=. |
CVE-2022-28423 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/posts.php&action=delete. |
CVE-2022-28422 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/posts.php&action=edit. |
CVE-2022-28421 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin.php?id=posts&action=display&value=1&postid=. |
CVE-2022-28420 | Critical | 9.8 | 2022-04-21 | Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via BabyCare/admin.php?id=theme&setid=. |
CVE-2021-25779 | Critical | 9.8 | 2021-02-17 | Baby Care System v1.0 is vulnerable to SQL injection via the 'id' parameter on the contentsectionpage.php page. |
CVE-2021-25780 | High | 7.2 | 2021-02-17 | An arbitrary file upload vulnerability has been identified in posts.php in Baby Care System 1.0. The vulnerability could be exploited by an remote attacker to⦠|