Vulnerabilities > Online Fire Reporting System Project > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-06-14 CVE-2022-31415 SQL Injection vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0
Online Fire Reporting System v1.0 was discovered to contain a SQL injection vulnerability via the GET parameter in /report/list.php.
4.0
2022-06-02 CVE-2022-31980 SQL Injection vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=teams/manage_team&id=.
6.5
2022-06-02 CVE-2022-31981 SQL Injection vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=teams/view_team&id=.
6.5
2022-06-02 CVE-2022-31982 SQL Injection vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=requests/view_request&id=.
6.5
2022-06-02 CVE-2022-31983 SQL Injection vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=requests/manage_request&id=.
6.5
2022-06-02 CVE-2022-31984 SQL Injection vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/requests/take_action.php?id=.
6.5
2022-06-02 CVE-2022-31973 Unspecified vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0
Online Fire Reporting System v1.0 is vulnerable to Delete any file via /ofrs/classes/Master.php?f=delete_img.
network
low complexity
online-fire-reporting-system-project
5.5
2022-06-02 CVE-2022-31974 SQL Injection vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=reports&date=.
6.5
2022-06-02 CVE-2022-31975 SQL Injection vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=user/manage_user&id=.
6.5