Unrated severityNVD Advisory· Published Dec 2, 2025· Updated Dec 2, 2025
The feature to manage resources is prone to Cross-Site Request Forgery attacks
CVE-2025-13871
Description
Cross-Site Request Forgery (CSRF) in the resource-management feature of
ObjectPlanet Opinio 7.26 rev12562
allows to upload files on behalf of the connected users and then access such files without authentication.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2= 7.26 rev12562+ 1 more
- (no CPE)range: = 7.26 rev12562
- (no CPE)range: 7.26 rev12562
Patches
Vulnerability mechanics
References
1- www.objectplanet.com/opinio/changelog.htmlmitrerelease-notes
News mentions
0No linked articles in our index yet.