Objectplanet: >> Opinio >> 4.3.4 Security Vulnerabilities
Objectplanet Opinio version 7.22 and prior uses a cryptographically weak pseudo-random number generator (PRNG) coupled to a predictable seed, which could lead to an unauthenticated account takeover of any user on the application.
CVSS Score
9.8
EPSS Score
0.001
Published
2024-02-01
ObjectPlanet Opinio before 7.15 allows XXE attacks via three steps: modify a .css file to have <!ENTITY content, create a .xml file for a generic survey template (containing a link to this .css file), and import this .xml file at the survey/admin/folderSurvey.do?action=viewImportSurvey['importFile'] URI. The XXE can then be triggered at a admin/preview.do?action=previewSurvey&surveyId= URI.
CVSS Score
6.5
EPSS Score
0.002
Published
2021-07-31
ObjectPlanet Opinio before 7.14 allows Expression Language Injection via the admin/permissionList.do from parameter. This can be used to retrieve possibly sensitive serverInfo data.
CVSS Score
7.5
EPSS Score
0.007
Published
2021-07-31
admin/file.do in ObjectPlanet Opinio before 7.15 allows Unrestricted File Upload of executable JSP files, resulting in remote code execution, because filePath can have directory traversal and fileContent can be valid JSP code.
CVSS Score
8.8
EPSS Score
0.05
Published
2021-07-31
ObjectPlanet Opinio before 7.14 allows reflected XSS via the survey/admin/surveyAdmin.do?action=viewSurveyAdmin query string. (There is also stored XSS if input to survey/admin/*.do is accepted from untrusted users.)
CVSS Score
6.1
EPSS Score
0.005
Published
2021-07-30
In ObjectPlanet Opinio before 7.6.4, there is XSS.
CVSS Score
6.1
EPSS Score
0.003
Published
2017-07-03