Lucene search
China National Vulnerability DatabaseCNVD-2022-55745HistoryJun 09, 2022 - 12:00 a.m.
Online Fire Reporting System SQL Injection Vulnerability (CNVD-2022-55745)
2022-06-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
0.016 Low
EPSS
Percentile
87.5%
Online Fire Reporting System is an online fire reporting system from Carlo Montero’s personal developer. version v1.0 of Online Fire Reporting System is vulnerable to SQL injection, which originates from /ofrs/classes/Master.php?f= delete_inquiry lacks validation for external input SQL statements, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| carlo montero online fire reporting system v | eq | 1.0 |
Related
nvd
nvd
CVE-2022-31978
2022-06-02 14:15:59
cvelist
cvelist
CVE-2022-31978
2022-06-01 18:13:51
prion
prion
Sql injection
2022-06-02 14:15:00
cve
cve
CVE-2022-31978
2022-06-02 14:15:59
nuclei
nuclei
Online Fire Reporting System v1.0 - SQL injection
2023-06-05 07:03:16