CVE-2024-34987 identifies a critical SQL Injection vulnerability in the PHPGurukul Online Fire Reporting System version 1.2, located in the ofrs/admin/index.php script that handles administrator login. The vulnerability arises from improper sanitization of the username input field, allowing attackers to inject arbitrary SQL commands. This injection can manipulate the authentication query to bypass login controls without valid credentials. The flaw does not require any prior authentication or user interaction, making it highly exploitable remotely over the network. Successful exploitation compromises the confidentiality and integrity of the system by granting unauthorized administrative access, potentially enabling attackers to alter fire reporting data, disrupt operations, or pivot to other internal systems. The vulnerability is tracked as CWE-89 (Improper Neutralization of Special Elements used in an SQL Command). The CVSS v3.1 base score is 9.1, reflecting network attack vector, low attack complexity, no privileges required, no user interaction, and high impact on confidentiality and integrity, with no impact on availability. No patches or known exploits have been reported as of the publication date (June 3, 2024). Given the critical nature of fire reporting systems, this vulnerability poses a significant risk to emergency response infrastructure relying on this software.

The impact of CVE-2024-34987 is severe for organizations using PHPGurukul Online Fire Reporting System 1.2. Unauthorized administrative access can lead to manipulation or deletion of critical fire incident data, undermining emergency response effectiveness and public safety. Attackers could alter reports, disable alerting mechanisms, or exfiltrate sensitive information related to fire incidents and personnel. This compromises data confidentiality and integrity, potentially causing operational disruptions and loss of trust in emergency services. Additionally, attackers gaining admin access may use the system as a foothold to move laterally within the network, escalating risks to broader organizational IT infrastructure. The lack of authentication or user interaction requirements makes exploitation feasible remotely by any attacker with network access to the system. This elevates the threat level for public safety agencies, municipal governments, and organizations relying on this software for fire incident management worldwide.

To mitigate CVE-2024-34987, organizations should immediately restrict network access to the affected PHPGurukul Online Fire Reporting System admin interface, limiting it to trusted internal IP addresses or VPN users. Deploying a Web Application Firewall (WAF) with SQL Injection detection and prevention rules can help block malicious payloads targeting the username input field. Conduct thorough input validation and parameterized queries in the application code to eliminate SQL Injection vectors; if source code access is available, prioritize patching or upgrading to a fixed version once released. Monitor authentication logs for unusual login attempts or patterns indicative of injection attacks. Implement network segmentation to isolate the fire reporting system from critical infrastructure. Regularly back up fire incident data securely to enable recovery in case of compromise. Engage with the vendor or community for updates and patches. Until a patch is available, consider alternative fire reporting solutions or enhanced manual verification processes for administrative actions.