Unknown · Izybat Orange Casiers · CVE-2023-22630
**Name of the Vulnerable Software and Affected Versions**
IzyBat Orange casiers versions before 20221102 1
**Description**
The issue allows SQL Injection via a "getCasier.php?taille=" URI.
**Recommendations**
For versions before 20221102 1, update to a version 20221102 1 or later to resolve the issue.
As a temporary workaround, consider restricting access to the "getCasier.php" endpoint until a patch is available.
Avoid using the `taille` parameter in the affected API endpoint until the issue is resolved.