Vulnerabilities > Online Fire Reporting System Project

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-16	CVE-2022-31906	Cross-site Scripting vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0 Online Fire Reporting System v1.0 is vulnerable to Cross Site Scripting (XSS) via /ofrs/classes/Master.php. network online-fire-reporting-system-project CWE-79	3.5
2022-06-14	CVE-2022-31415	SQL Injection vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0 Online Fire Reporting System v1.0 was discovered to contain a SQL injection vulnerability via the GET parameter in /report/list.php. network low complexity online-fire-reporting-system-project CWE-89	4.0
2022-06-02	CVE-2022-31980	SQL Injection vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0 Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=teams/manage_team&id=. network low complexity online-fire-reporting-system-project CWE-89	6.5
2022-06-02	CVE-2022-31981	SQL Injection vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0 Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=teams/view_team&id=. network low complexity online-fire-reporting-system-project CWE-89	6.5
2022-06-02	CVE-2022-31982	SQL Injection vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0 Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=requests/view_request&id=. network low complexity online-fire-reporting-system-project CWE-89	6.5
2022-06-02	CVE-2022-31983	SQL Injection vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0 Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=requests/manage_request&id=. network low complexity online-fire-reporting-system-project CWE-89	6.5
2022-06-02	CVE-2022-31984	SQL Injection vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0 Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/requests/take_action.php?id=. network low complexity online-fire-reporting-system-project CWE-89	6.5
2022-06-02	CVE-2022-31973	Unspecified vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0 Online Fire Reporting System v1.0 is vulnerable to Delete any file via /ofrs/classes/Master.php?f=delete_img. network low complexity online-fire-reporting-system-project	5.5
2022-06-02	CVE-2022-31974	SQL Injection vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0 Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=reports&date=. network low complexity online-fire-reporting-system-project CWE-89	6.5
2022-06-02	CVE-2022-31975	SQL Injection vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0 Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=user/manage_user&id=. network low complexity online-fire-reporting-system-project CWE-89	6.5