Vulnerability Details CVE-2025-13871
Cross-Site Request Forgery (CSRF) in the resource-management feature of
ObjectPlanet Opinio 7.26 rev12562
allows to upload
files on behalf of the connected users and then access such files without authentication.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 5.2%
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2025-13871
-
cpe:2.3:a:objectplanet:opinio:7.26