Lucene search
China National Vulnerability DatabaseCNVD-2022-55738HistoryJun 09, 2022 - 12:00 a.m.
Online Fire Reporting System SQL Injection Vulnerability (CNVD-2022-55738)
2022-06-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
online fire reporting system
sql injection
carlo montero
version v1.0
lack of validation
external input
illegal sql commands
sensitive data
database
EPSS
0.011
Percentile
84.7%
Online Fire Reporting System is an online fire reporting system from Carlo Monteroβs personal developer. version v1.0 of Online Fire Reporting System is vulnerable to SQL injection, which originates from /ofrs/admin/?page=reports& date=Lack of validation of external input SQL statements, an attacker can use the vulnerability to execute illegal SQL commands to steal sensitive data from the database.
Related
prion
prion
Sql injection
2022-06-02 14:15:00
nvd
nvd
CVE-2022-31974
2022-06-02 14:15:59
nuclei
nuclei
Online Fire Reporting System v1.0 - SQL injection
2023-06-05 07:03:16
cvelist
cvelist
CVE-2022-31974
2022-06-01 18:21:20
cve
cve
CVE-2022-31974
2022-06-02 14:15:59