📦 Gibbon

Name: Gibbon
Author: Gibbonedu

by Gibbonedu

🔍 What is Gibbon?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2024-24724

CRITICAL CVSS 9.8 Apr 3, 2024

This vulnerability allows remote attackers to execute arbitrary code on Gibbon systems through server-side template injection in the messengerSettings.php file. Attackers can exploit unsanitized input...

CVE-2023-34598

CRITICAL CVSS 9.8 Jun 29, 2023

CVE-2023-34598 is a Local File Inclusion vulnerability in Gibbon v25.0.0 that allows attackers to read sensitive files from the server's installation directory. This affects all Gibbon v25.0.0 install...

CVE-2024-24725

HIGH CVSS 8.8 Mar 23, 2024

This vulnerability allows remote authenticated users to execute arbitrary PHP code through deserialization attacks in Gibbon's import functionality. Attackers can achieve remote code execution by mani...

CVE-2023-45880

HIGH CVSS 7.2 Nov 14, 2023

This vulnerability allows attackers to perform directory traversal in GibbonEdu's report template builder, enabling them to create arbitrary PHP files in the webroot directory. This affects all Gibbon...