VYPR
Unrated severityNVD Advisory· Published Dec 2, 2025· Updated Dec 2, 2025

The feature to manage resources is prone to Cross-Site Request Forgery attacks

CVE-2025-13871

Description

Cross-Site Request Forgery (CSRF) in the resource-management feature of

ObjectPlanet Opinio 7.26 rev12562

allows to upload files on behalf of the connected users and then access such files without authentication.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Objectplanet/Opiniollm-fuzzy2 versions
    = 7.26 rev12562+ 1 more
    • (no CPE)range: = 7.26 rev12562
    • (no CPE)range: 7.26 rev12562

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.