CVE-2022-31974: SQL Injection
First published: Wed Jun 01 2022(Updated: )
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=reports&date=.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Online Fire Reporting System Project Online Fire Reporting System | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2022-31974.
What is the affected software for this vulnerability?
The affected software for this vulnerability is Online Fire Reporting System v1.0.
What is the severity rating of CVE-2022-31974?
CVE-2022-31974 has a severity rating of 7.2 (high).
How can an attacker exploit this vulnerability?
An attacker can exploit this vulnerability by injecting SQL commands through the /ofrs/admin/?page=reports&date= parameter.
Is there a fix available for CVE-2022-31974?
There is no specific fix mentioned in the provided reference link for CVE-2022-31974. It is recommended to contact the software vendor for a patch or update.
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/online fire reporting system project
- canonical/online fire reporting system project online fire reporting system
- version/online fire reporting system project online fire reporting system/1.0