Vulnerabilities > Baby Care System Project > Baby Care System > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-04-21 CVE-2022-28427 SQL Injection vulnerability in Baby Care System Project Baby Care System 1.0
Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/inbox.php&action=read&msgid=.
network
low complexity
baby-care-system-project CWE-89
critical
 9.8
9.8
2022-04-21 CVE-2022-28426 SQL Injection vulnerability in Baby Care System Project Baby Care System 1.0
Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/pagerole.php&action=edit&roleid=.
network
low complexity
baby-care-system-project CWE-89
critical
 9.8
9.8
2022-04-21 CVE-2022-28425 SQL Injection vulnerability in Baby Care System Project Baby Care System 1.0
Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/pagerole.php&action=display&value=1&roleid=.
network
low complexity
baby-care-system-project CWE-89
critical
 9.8
9.8
2022-04-21 CVE-2022-28424 SQL Injection vulnerability in Baby Care System Project Baby Care System 1.0
Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/posts.php&find=.
network
low complexity
baby-care-system-project CWE-89
critical
 9.8
9.8
2022-04-21 CVE-2022-28423 SQL Injection vulnerability in Baby Care System Project Baby Care System 1.0
Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/posts.php&action=delete.
network
low complexity
baby-care-system-project CWE-89
critical
 9.8
9.8
2022-04-21 CVE-2022-28422 SQL Injection vulnerability in Baby Care System Project Baby Care System 1.0
Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/posts.php&action=edit.
network
low complexity
baby-care-system-project CWE-89
critical
 9.8
9.8
2022-04-21 CVE-2022-28421 SQL Injection vulnerability in Baby Care System Project Baby Care System 1.0
Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin.php?id=posts&action=display&value=1&postid=.
network
low complexity
baby-care-system-project CWE-89
critical
 9.8
9.8
2022-04-21 CVE-2022-28420 SQL Injection vulnerability in Baby Care System Project Baby Care System 1.0
Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via BabyCare/admin.php?id=theme&setid=.
network
low complexity
baby-care-system-project CWE-89
critical
 9.8
9.8
2021-02-17 CVE-2021-25779 SQL Injection vulnerability in Baby Care System Project Baby Care System 1.0
Baby Care System v1.0 is vulnerable to SQL injection via the 'id' parameter on the contentsectionpage.php page.
network
low complexity
baby-care-system-project CWE-89
critical
 9.8
9.8