Known Vulnerabilities for products from Online Fire Reporting System Project

Listed below are 18 of the newest known vulnerabilities associated with the vendor "Online Fire Reporting System Project".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2023-36942 json A cross-site scripting (XSS) vulnerability in PHPGurukul Online Fire Reporting System Using PHP and MySQL 1.2 allows attacker... 6.1 - MEDIUM 2023-07-27 2023-11-14
CVE-2023-36941 json A cross-site scripting (XSS) vulnerability in PHPGurukul Online Fire Reporting System Using PHP and MySQL 1.2 allows attacker... 6.1 - MEDIUM 2023-07-27 2023-11-14
CVE-2023-36940 json Cross Site Scripting (XSS) vulnerability in PHPGurukul Online Fire Reporting System Using PHP and MySQL v.1.2 allows attacker... 4.8 - MEDIUM 2023-07-10 2023-11-14
CVE-2022-34611 json A cross-site scripting (XSS) vulnerability in /index.php/?p=report of Online Fire Reporting System v1.0 allows attackers to e... 5.4 - MEDIUM 2022-07-27 2022-08-02
CVE-2022-31984 json Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/requests/take_action.php?id=. 7.2 - HIGH 2022-06-02 2022-06-10
CVE-2022-31983 json Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=requests/manage_request&id=. 7.2 - HIGH 2022-06-02 2022-06-10
CVE-2022-31982 json Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=requests/view_request&id=. 7.2 - HIGH 2022-06-02 2022-06-10
CVE-2022-31981 json Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=teams/view_team&id=. 7.2 - HIGH 2022-06-02 2022-06-10
CVE-2022-31980 json Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=teams/manage_team&id=. 7.2 - HIGH 2022-06-02 2022-06-10
CVE-2022-31978 json Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/classes/Master.php?f=delete_inquiry. 9.8 - CRITICAL 2022-06-02 2022-06-10
CVE-2022-31977 json Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/classes/Master.php?f=delete_team. 9.8 - CRITICAL 2022-06-02 2022-06-10
CVE-2022-31976 json Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/classes/Master.php?f=delete_request. 9.8 - CRITICAL 2022-06-02 2022-06-10
CVE-2022-31975 json Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=user/manage_user&id=. 7.2 - HIGH 2022-06-02 2022-06-10
CVE-2022-31974 json Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=reports&date=. 7.2 - HIGH 2022-06-02 2022-06-10
CVE-2022-31973 json Online Fire Reporting System v1.0 is vulnerable to Delete any file via /ofrs/classes/Master.php?f=delete_img. 6.5 - MEDIUM 2022-06-02 2022-06-10
CVE-2022-31906 json Online Fire Reporting System v1.0 is vulnerable to Cross Site Scripting (XSS) via /ofrs/classes/Master.php. 4.8 - MEDIUM 2022-06-16 2022-06-27
CVE-2022-31879 json Online Fire Reporting System 1.0 is vulnerable to SQL Injection via the date parameter. 8.8 - HIGH 2022-07-26 2022-08-01
CVE-2022-31415 json Online Fire Reporting System v1.0 was discovered to contain a SQL injection vulnerability via the GET parameter in /report/li... 6.5 - MEDIUM 2022-06-14 2022-06-22
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report