Lucene search
MitreCVELIST:CVE-2024-24725HistoryMar 23, 2024 - 12:00 a.m.
CVE-2024-24725
2024-03-2300:00:00
mitre
www.cve.org
1
gibbon
php deserialization
remote attack
authenticated user
post request
uri
security vulnerability
Gibbon through 26.0.00 allows remote authenticated users to conduct PHP deserialization attacks via columnOrder in a POST request to the modules/System%20Admin/import_run.php&type=externalAssessment&step=4 URI.
Related
cve
cve
CVE-2024-24725
2024-03-23 23:15:07
exploitdb
exploitdb
Gibbon LMS < v26.0.00 - Authenticated RCE
2024-03-18 00:00:00
nvd
nvd
CVE-2024-24725
2024-03-23 23:15:07
zdt
zdt
Gibbon LMS < v26.0.00 - Authenticated Remote Code Execution Exploit
2024-03-18 00:00:00
Gibbon School Platform Authenticated PHP Deserialization Exploit
2024-04-12 00:00:00
metasploit
metasploit
Gibbon School Platform Authenticated PHP Deserialization Vulnerability
2024-04-01 14:49:10
packetstorm
packetstorm
Gibbon LMS 26.0.00 PHP Deserialization / Code Execution
2024-03-19 00:00:00
Gibbon School Platform 26.0.00 Remote Code Execution
2024-04-05 00:00:00
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up 04/12/24
2024-04-12 17:47:11