Lucene search
China National Vulnerability DatabaseCNVD-2022-55747HistoryJun 09, 2022 - 12:00 a.m.
Online Fire Reporting System SQL注入漏洞
2022-06-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
online fire reporting system
sql injection
vulnerability
carlo montero
personal developer
version v1.0
validation
external input
sql statements
exploited
attackers
illegal commands
sensitive data
database.
EPSS
0.016
Percentile
87.5%
Online Fire Reporting System is an online fire reporting system from Carlo Montero’s personal developer. version v1.0 of Online Fire Reporting System is vulnerable to SQL injection, which originates from /ofrs/classes/Master.php?f= delete_team lacks validation of external input SQL statements, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data.
Related
cvelist
cvelist
CVE-2022-31977
2022-06-01 18:17:32
nuclei
nuclei
Online Fire Reporting System v1.0 - SQL injection
2023-06-05 07:03:16
prion
prion
Sql injection
2022-06-02 14:15:00
nvd
nvd
CVE-2022-31977
2022-06-02 14:15:59
cve
cve
CVE-2022-31977
2022-06-02 14:15:59