2 matches found
CVE-2022-31980
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=teams/manageteam=...
CVE-2022-31980
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=teams/manage_team&id=. The root cause is unsanitized user input used in SQL queries, potentially enabling arbitrary SQL execution, data disclosure, or data manipulation. CVSS3.1 base score 7.2 (HIGH). Remediati...