OpenProject 8.3.1 SQL Injection

OpenProject 8.3.1 SQL Injection
OpenProject versions 5.0.0 through 8.3.1 suffer from a remote SQL injection vulnerability.