IzyBat Orange casiers before 20230803_1 allows getEnsemble.php ensemble SQL injection. Base Score: 9.1 CRITICAL
See more details on the Orange CERT's github : CVE-2023-50429 or NIST publication