CVE-2022-31879

Name of the Vulnerable Software and Affected Versions Online Fire Reporting System version 1.0

Description The issue concerns SQL Injection via the date parameter. This allows for potential manipulation of database queries, which could lead to unauthorized data access or modification.

Recommendations For Online Fire Reporting System version 1.0, consider restricting access to the date parameter in the affected API endpoint until a patch is available. As a temporary workaround, avoid using the date parameter in queries to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.