Vulnerabilities

CVE-2025-40690

by Fred · 11/09/2025

SQL Injection in Online Fire Reporting System v1.2 by PHPGurukul. This vulnerability allows an attacker to retrieve, create, update and delete database via ‘teamid’ parameter in the endpoint ‘/ofrs/admin/edit-team.php’.

More information : https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-phpgurukuls-online-fire-reporting-system

Similar

Tags: Cybersecurity Alert