PT-2025-41823 · Unknown · Gpp-Burgerportaal
Felixcicatt
·
Published
2025-10-13
·
Updated
2025-10-14
·
CVE-2025-62362
CVSS v4.0
6.9
Medium
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions
gpp-burgerportaal versions prior to 2.0.3
gpp-burgerportaal versions prior to 3.0.2
gpp-burgerportaal versions prior to 4.0.1
Description
gpp-burgerportaal is a Dutch government citizen portal application. In affected versions, the name and email address of employees who publish content are exposed in network responses and can be discovered by viewing the browser's developer tools network tab. This information disclosure may violate employee privacy expectations and could be used for targeted attacks or unwanted contact.
Recommendations
Update gpp-burgerportaal to version 2.0.3 or later.
Update gpp-burgerportaal to version 3.0.2 or later.
Update gpp-burgerportaal to version 4.0.1 or later.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Gpp-Burgerportaal