organizr CVE Vulnerabilities & Metrics

Focus on organizr vulnerabilities and metrics.

Last updated: 08 Mar 2025, 23:25 UTC

About organizr Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with organizr. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total organizr CVEs: 10
Earliest CVE date: 13 Apr 2022, 18:15 UTC
Latest CVE date: 29 Aug 2024, 20:15 UTC

Latest CVE reference: CVE-2024-41372

Rolling Stats

30-day Count (Rolling): 0
365-day Count (Rolling): 3

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): 0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): 0.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical organizr CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 3.0

Max CVSS: 6.0

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range	Count
0.0-3.9	7
4.0-6.9	3
7.0-8.9	0
9.0-10.0	0

CVSS Distribution Chart

Top 5 Highest CVSS organizr CVEs

These are the five CVEs with the highest CVSS scores for organizr, sorted by severity first and recency.

CVE-2022-1347 organizr Published on 13 Apr 2022, 19:15 UTC (CVSS: 6.0)
Stored XSS in the "Username" & "Email" input fields leads to account takeover of Admin & Co-admin users in GitHub repository causefx/organizr prior to 2.1.1810. Account takeover and privilege escalation
CVE-2022-1699 organizr Published on 12 May 2022, 16:15 UTC (CVSS: 5.0)
Uncontrolled Resource Consumption in GitHub repository causefx/organizr prior to 2.1.2000. This vulnerability can be abused by doing a DDoS attack for which genuine users will not able to access resources/applications.
CVE-2022-1698 organizr Published on 12 May 2022, 16:15 UTC (CVSS: 5.0)
Allowing long password leads to denial of service in GitHub repository causefx/organizr prior to 2.1.2000. This vulnerability can be abused by doing a DDoS attack for which genuine users will not able to access resources/applications.
CVE-2022-1909 organizr Published on 27 May 2022, 09:15 UTC (CVSS: 3.5)
Cross-site Scripting (XSS) - Stored in GitHub repository causefx/organizr prior to 2.1.2200.
CVE-2022-1345 organizr Published on 13 Apr 2022, 19:15 UTC (CVSS: 3.5)
Stored XSS viva .svg file upload in GitHub repository causefx/organizr prior to 2.1.1810. This allows attackers to execute malicious scripts in the user's browser and it can lead to session hijacking, sensitive data exposure, and worse.

All CVEs for organizr

CVE-2024-41372 organizr vulnerability CVSS: 0 29 Aug 2024, 20:15 UTC

Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/settyping.php.

CVE-2024-41371 organizr vulnerability CVSS: 0 29 Aug 2024, 20:15 UTC

Organizr v1.90 is vulnerable to Cross Site Scripting (XSS) via api.php.

CVE-2024-41370 organizr vulnerability CVSS: 0 29 Aug 2024, 20:15 UTC

Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/setlike.php.

CVE-2022-1909 organizr vulnerability CVSS: 3.5 27 May 2022, 09:15 UTC

Cross-site Scripting (XSS) - Stored in GitHub repository causefx/organizr prior to 2.1.2200.

CVE-2022-1699 organizr vulnerability CVSS: 5.0 12 May 2022, 16:15 UTC

Uncontrolled Resource Consumption in GitHub repository causefx/organizr prior to 2.1.2000. This vulnerability can be abused by doing a DDoS attack for which genuine users will not able to access resources/applications.

CVE-2022-1698 organizr vulnerability CVSS: 5.0 12 May 2022, 16:15 UTC

Allowing long password leads to denial of service in GitHub repository causefx/organizr prior to 2.1.2000. This vulnerability can be abused by doing a DDoS attack for which genuine users will not able to access resources/applications.

CVE-2022-1347 organizr vulnerability CVSS: 6.0 13 Apr 2022, 19:15 UTC

Stored XSS in the "Username" & "Email" input fields leads to account takeover of Admin & Co-admin users in GitHub repository causefx/organizr prior to 2.1.1810. Account takeover and privilege escalation

CVE-2022-1345 organizr vulnerability CVSS: 3.5 13 Apr 2022, 19:15 UTC

Stored XSS viva .svg file upload in GitHub repository causefx/organizr prior to 2.1.1810. This allows attackers to execute malicious scripts in the user's browser and it can lead to session hijacking, sensitive data exposure, and worse.

CVE-2022-1346 organizr vulnerability CVSS: 3.5 13 Apr 2022, 18:15 UTC

Multiple Stored XSS in GitHub repository causefx/organizr prior to 2.1.1810. This allows attackers to execute malicious scripts in the user's browser and it can lead to session hijacking, sensitive data exposure, and worse.

CVE-2022-1344 organizr vulnerability CVSS: 3.5 13 Apr 2022, 18:15 UTC

Stored XSS due to no sanitization in the filename in GitHub repository causefx/organizr prior to 2.1.1810. This allows attackers to execute malicious scripts in the user's browser and it can lead to session hijacking, sensitive data exposure, and worse.