3 matches found
CVE-2022-28425
Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/pagerole.php=display=1=...
CVE-2022-28425
Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/pagerole.php&action=display&value=1&roleid=...
CVE-2022-28425
CVE-2022-28425 affects Baby Care System v1.0 and is a SQL injection via /admin/pagerole.php&action=display&value=1&roleid=. The root cause is lack of input validation on the roleid parameter, enabling arbitrary SQL execution and potential data exposure. Multiple sources (CNVD/CNNVD, Red Hat/PRION...