Lucene search
China National Vulnerability DatabaseCNVD-2022-55739HistoryJun 09, 2022 - 12:00 a.m.
Online Fire Reporting System SQL Injection Vulnerability (CNVD-2022-55739)
2022-06-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
0.001 Low
EPSS
Percentile
37.9%
Online Fire Reporting System is an online fire reporting system from Carlo Montero’s personal developer. version v1.0 of Online Fire Reporting System is vulnerable to SQL injection, which originates from /ofrs/admin/?page=requests/ manage_request&id=Lack of validation of external input SQL statements, an attacker can use the vulnerability to execute illegal SQL commands to steal sensitive data from the database.
| CPE | Name | Operator | Version |
|---|---|---|---|
| carlo montero online fire reporting system v | eq | 1.0 |
Related
cvelist
cvelist
CVE-2022-31983
2022-06-01 18:07:51
cve
cve
CVE-2022-31983
2022-06-02 14:16:00
prion
prion
Sql injection
2022-06-02 14:16:00
nvd
nvd
CVE-2022-31983
2022-06-02 14:16:00
nuclei
nuclei
Online Fire Reporting System v1.0 - SQL injection
2023-06-05 07:03:16