VYPR

Opal

by Obiba

Source repositories

CVEs (2)

  • CVE-2025-27792HigMar 11, 2025
    risk 0.43cvss epss 0.00

    Opal is OBiBa’s core database application for biobanks or epidemiological studies. Prior to version 5.1.1, the protections against cross-site request forgery (CSRF) were insufficient application-wide. The referrer header is checked, and if it is invalid, the server returns…

  • CVE-2025-27101HigMar 11, 2025
    risk 0.40cvss epss 0.01

    Opal is OBiBa’s core database application for biobanks or epidemiological studies. Prior to version 5.1.1, when copying any parent directory to a folder in the /temp/ directory, all files in that parent directory are copied, including files which the user should not have…