📦 Opinio

This vulnerability allows attackers to perform blind Server-Side Request Forgery (SSRF) attacks through the survey-import feature of ObjectPlanet Opinio. Attackers can force the server to make HTTP GE...

CVE-2023-4472 is a critical authentication bypass vulnerability in Objectplanet Opinio survey software. It allows unauthenticated attackers to take over any user account due to a weak random number ge...

This CSRF vulnerability in ObjectPlanet Opinio allows attackers to trick authenticated users into uploading files to the system, then access those files without authentication. It affects all users of...

CVE-2020-26565 is an expression language injection vulnerability in ObjectPlanet Opinio's admin/permissionList.do endpoint that allows attackers to execute arbitrary code on the server. This can lead ...

This stored XSS vulnerability in ObjectPlanet Opinio's survey-import feature allows attackers to inject malicious JavaScript that executes when users view compromised surveys. It affects web applicati...