CVE-2025-11442

CVE-2025-11442 affects JhumanJ OpnForm up to version 1.9.3. The vulnerability is a CSRF in an API Endpoint, with remote attack potential. The vendor notes that API calls require Authorization Bearer Tokens, which mitigates classic CSRF, but exploitation could occur if an attacker obtains a JWT vi...