Baby Care System

baby_care_system

Vendor: Janobe • 23 CVEs

CVEs (23)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-35752 1Janobe 1Baby Care System Nov 18, 2025 Mar 10, 2021 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 Baby Care System 1.0 is affected by a cross-site scripting (XSS) vulnerability in the Edit Page tab through the Post title parameter.
CVE-2021-25780 1Janobe 1Baby Care System Nov 18, 2025 Feb 17, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 An arbitrary file upload vulnerability has been identified in posts.php in Baby Care System 1.0. The vulnerability could be exploited by an remote attacker to upload content to the server, including PHP files, which coul...Show more An arbitrary file upload vulnerability has been identified in posts.php in Baby Care System 1.0. The vulnerability could be exploited by an remote attacker to upload content to the server, including PHP files, which could result in command execution and obtaining a shell.Show less
CVE-2021-25779 1Janobe 1Baby Care System Nov 18, 2025 Feb 17, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Baby Care System v1.0 is vulnerable to SQL injection via the 'id' parameter on the contentsectionpage.php page.