CVE-2025-62730 | SOPlanning up to 1.54 user_manage_team authorization

November 20, 2025 Yanac

A vulnerability marked as critical has been reported in SOPlanning up to 1.54. This affects the function user_manage_team. The manipulation leads to incorrect authorization.

This vulnerability is documented as CVE-2025-62730. The attack can be initiated remotely. There is not any exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More

CVE-2025-62295 | SOPlanning up to 1.54 /groupe_form endpoint cross site scripting
CVE-2025-62294 | SOPlanning up to 1.54 Password Recovery Token generation of predictable numbers or identifiers