Unrated severityNVD Advisory· Published Feb 19, 2026· Updated Feb 24, 2026
Cross Site request forgery vulnerability discovered in OpenText WSM Management Server.
CVE-2025-13671
Description
Cross-Site Request Forgery (CSRF) vulnerability in OpenText™ Web Site Management Server allows Cross Site Request Forgery. The vulnerability could make a user, with active session inside the product, click on a page that contains this malicious HTML triggering to perform changes unconsciously.
This issue affects Web Site Management Server: 16.7.0, 16.7.1.
Affected products
2= 16.7.0, 16.7.1+ 1 more
- (no CPE)range: = 16.7.0, 16.7.1
- (no CPE)range: 16.7.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.