2 matches found
CVE-2022-31982
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=requests/viewrequest=...
CVE-2022-31982
Online Fire Reporting System v1.0 is affected by a SQL Injection vulnerability in the admin interface parameter id (path: /ofrs/admin/?page=requests/view_request&id=). The issue is caused by insufficient input validation/exploitation of untrusted input, enabling arbitrary SQL queries and partial/...