CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-13872

Blind Server-Side Request Forgery (SSRF) in the survey-import feature of ObjectPlanet Opinio 7.26 rev12562 on Web-based platforms allows an attacker to force the server to perform HTTP GET requests via crafted import requests to an arbitrary destination.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 10.0%

CVSS Severity

CVSS v3 Score 9.1

References

https://www.objectplanet.com/opinio/changelog.html

Products affected by CVE-2025-13872

Objectplanet » Opinio » Version: 7.26

cpe:2.3:a:objectplanet:opinio:7.26

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-13872

Products

Pricing

Contact Us