Skip to main content

Organizr

10 CVEs product

Monthly

CVE-2024-41372 CRITICAL POC Act Now

Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/settyping.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Organizr
NVD GitHub
CVSS 3.1
9.8
EPSS
0.5%
CVE-2024-41371 MEDIUM POC This Month

Organizr v1.90 is vulnerable to Cross Site Scripting (XSS) via api.php. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Organizr
NVD GitHub
CVSS 3.1
6.1
EPSS
0.3%
CVE-2024-41370 CRITICAL POC Act Now

Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/setlike.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Organizr
NVD GitHub
CVSS 3.1
9.8
EPSS
0.5%
CVE-2022-1909 MEDIUM POC PATCH This Month

Cross-site Scripting (XSS) - Stored in GitHub repository causefx/organizr prior to 2.1.2200. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Organizr
NVD GitHub
CVSS 3.1
5.4
EPSS
0.7%
CVE-2022-1699 HIGH POC PATCH This Week

Uncontrolled Resource Consumption in GitHub repository causefx/organizr prior to 2.1.2000. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Integer Overflow Information Disclosure Organizr
NVD GitHub
CVSS 3.1
7.5
EPSS
1.0%
CVE-2022-1698 HIGH POC PATCH This Week

Allowing long password leads to denial of service in GitHub repository causefx/organizr prior to 2.1.2000. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Integer Overflow Organizr
NVD GitHub
CVSS 3.1
7.5
EPSS
1.0%
CVE-2022-1347 HIGH POC PATCH This Week

Stored XSS in the "Username" & "Email" input fields leads to account takeover of Admin & Co-admin users in GitHub repository causefx/organizr prior to 2.1.1810. Rated high severity (CVSS 8.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Privilege Escalation XSS Organizr
NVD GitHub
CVSS 3.1
8.4
EPSS
1.2%
CVE-2022-1345 CRITICAL POC PATCH Act Now

Stored XSS viva .svg file upload in GitHub repository causefx/organizr prior to 2.1.1810. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS File Upload Information Disclosure Organizr
NVD GitHub
CVSS 3.1
9.0
EPSS
1.0%
CVE-2022-1346 CRITICAL POC PATCH Act Now

Multiple Stored XSS in GitHub repository causefx/organizr prior to 2.1.1810. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Information Disclosure Organizr
NVD GitHub
CVSS 3.1
9.0
EPSS
1.0%
CVE-2022-1344 CRITICAL POC PATCH Act Now

Stored XSS due to no sanitization in the filename in GitHub repository causefx/organizr prior to 2.1.1810. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Information Disclosure Organizr
NVD GitHub
CVSS 3.1
9.0
EPSS
1.0%
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/settyping.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Organizr
NVD GitHub
EPSS 0% CVSS 6.1
MEDIUM POC This Month

Organizr v1.90 is vulnerable to Cross Site Scripting (XSS) via api.php. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Organizr
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/setlike.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Organizr
NVD GitHub
EPSS 1% CVSS 5.4
MEDIUM POC PATCH This Month

Cross-site Scripting (XSS) - Stored in GitHub repository causefx/organizr prior to 2.1.2200. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Organizr
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC PATCH This Week

Uncontrolled Resource Consumption in GitHub repository causefx/organizr prior to 2.1.2000. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Integer Overflow Information Disclosure Organizr
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC PATCH This Week

Allowing long password leads to denial of service in GitHub repository causefx/organizr prior to 2.1.2000. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Integer Overflow Organizr
NVD GitHub
EPSS 1% CVSS 8.4
HIGH POC PATCH This Week

Stored XSS in the "Username" & "Email" input fields leads to account takeover of Admin & Co-admin users in GitHub repository causefx/organizr prior to 2.1.1810. Rated high severity (CVSS 8.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Privilege Escalation XSS Organizr
NVD GitHub
EPSS 1% CVSS 9.0
CRITICAL POC PATCH Act Now

Stored XSS viva .svg file upload in GitHub repository causefx/organizr prior to 2.1.1810. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS File Upload Information Disclosure +1
NVD GitHub
EPSS 1% CVSS 9.0
CRITICAL POC PATCH Act Now

Multiple Stored XSS in GitHub repository causefx/organizr prior to 2.1.1810. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Information Disclosure Organizr
NVD GitHub
EPSS 1% CVSS 9.0
CRITICAL POC PATCH Act Now

Stored XSS due to no sanitization in the filename in GitHub repository causefx/organizr prior to 2.1.1810. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS Information Disclosure Organizr
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy