Title:Online Fire Reporting System SQL注入漏洞 (CVE-2022-31975) Description:Online Fire Reporting System是Carlo Montero个人开发者的一个在线火灾报告系统。 Online Fire Reporting System v1.0 存在安全漏洞,攻击者利用该漏洞可通过/ofrs/admin/?page=user/manage_user&id=进行SQL注入攻击。
Description
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=user/manage_user&id=.
File Snapshot
id: CVE-2022-31975
info:
name: Online Fire Reporting System v1.0 - SQL injection
author: theama
...
Shenlong Bot has cached this for you
Remarks
1. It is advised to access via the original source first.2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.