Lucene search
China National Vulnerability DatabaseCNVD-2022-55746HistoryJun 09, 2022 - 12:00 a.m.
Online Fire Reporting System SQL Injection Vulnerability (CNVD-2022-55746)
2022-06-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
13
online fire reporting system
sql injection
vulnerability
carlo montero
version v1.0
delete_request
validation
external input
attackers
sensitive database data
EPSS
0.016
Percentile
87.5%
Online Fire Reporting System is an online fire reporting system from Carlo Monteroβs personal developer. version v1.0 of Online Fire Reporting System is vulnerable to SQL injection, which originates from /ofrs/classes/Master.php?f= delete_request lacks validation for external input SQL statements, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data.
Related
prion
prion
Sql injection
2022-06-02 14:15:00
cvelist
cvelist
CVE-2022-31976
2022-06-01 18:18:45
nvd
nvd
CVE-2022-31976
2022-06-02 14:15:59
nuclei
nuclei
Online Fire Reporting System v1.0 - SQL injection
2023-06-05 07:03:16
cve
cve
CVE-2022-31976
2022-06-02 14:15:59