Unrated severityNVD Advisory· Published Dec 2, 2025· Updated Dec 2, 2025
Blind Server-Side Request Forgery (SSRF) in the survey-import feature of ObjectPlanet Opinio
CVE-2025-13872
Description
Blind Server-Side Request Forgery (SSRF) in the survey-import feature of
ObjectPlanet Opinio 7.26 rev12562 on
Web-based platforms allows an attacker to force the server to perform HTTP GET requests via crafted import requests
to an arbitrary destination.
Affected products
2- Range: = 7.26 rev12562
- ObjectPlanet/Opiniov5Range: 7.26 rev12562
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- www.objectplanet.com/opinio/changelog.htmlmitrerelease-notes
News mentions
0No linked articles in our index yet.