CVE-2024-41370

Name of the Vulnerable Software and Affected Versions Organizr version 1.90

Description The issue is a SQL injection problem. It occurs via the chat/setlike.php file.

Recommendations For Organizr version 1.90, consider restricting access to the chat/setlike.php file until a patch is available. As a temporary workaround, avoid using parameters that could lead to SQL injection in the affected endpoint. At the moment, there is no information about a newer version that contains a fix for this vulnerability.