CVE-2025-13871
The feature to manage resources is prone to Cross-Site Request Forgery attacks
Cross-Site Request Forgery (CSRF) in the resource-management feature of
ObjectPlanet Opinio 7.26 rev12562
allows to upload
files on behalf of the connected users and then access such files without authentication.
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
Affected products
ObjectPlanet · OpinioWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →