CVE-2025-62293
20.11.2025, 16:15
SOPlanning is vulnerable to Broken Access Control in /statusendpoint. Due to lack of permission checks in Project Status functionality an authenticated attacker is able to add, edit and delete any status. This issue was fixed in version 1.55.Enginsight
Awaiting analysis
This vulnerability is currently awaiting analysis.
Common Weakness Enumeration