Online Fire Reporting System is an online fire reporting system from Carlo Montero’s personal developer. version v1.0 of Online Fire Reporting System is vulnerable to SQL injection, which originates from /ofrs/classes/Master.php?f= delete_team lacks validation of external input SQL statements, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data.