Security Advisory

CVE-2025-13872

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-02 09:51:59

Last updated 2025-12-02 16:55:02

Assigner TCS-CERT

State PUBLISHED

Description

Blind Server-Side Request Forgery (SSRF) in the survey-import feature of ObjectPlanet Opinio 7.26 rev12562 on Web-based platforms allows an attacker to force the server to perform HTTP GET requests via crafted import requests to an arbitrary destination.

← Browse all CVEs View on cve.org ↗