CVE-2025-13871
The feature to manage resources is prone to Cross-Site Request Forgery attacks
Cross-Site Request Forgery (CSRF) in the resource-management feature of
ObjectPlanet Opinio 7.26 rev12562
allows to upload
files on behalf of the connected users and then access such files without authentication.
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
Produtos afetados
ObjectPlanet · OpinioQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →