Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/05/23 10:7 a.m.8 views

CVE-2024-24724

Gibbon through 26.0.00 allows /modules/School%20Admin/messengerSettings.php Server Side Template Injection leading to Remote Code Execution because input is passed to the Twig template engine messengerSettings.php without sanitization...

9.8CVSS7.8AI score0.26089EPSS
Exploits4References1
cvelist
cvelist
added 2024/04/03 12:0 a.m.20 views

CVE-2024-24724

Gibbon through 26.0.00 allows /modules/School%20Admin/messengerSettings.php Server Side Template Injection leading to Remote Code Execution because input is passed to the Twig template engine messengerSettings.php without sanitization...

7.8AI score0.26089EPSS
Exploits4References2
packetstorm
packetstorm
added 2024/04/01 12:0 a.m.316 views

Gibbon 26.0.00 Server-Side Template Injection / Remote Code Execution

Exploit Title: Gibbon LMS has an SSTI vulnerability on the v26.0.00 version Date: 21.01.2024 Exploit Author: SecondX.io Research TeamIslam Rzayev,Fikrat Guliev, Ali Maharramli Vendor Homepage: https://gibbonedu.org/ Software Link: https://github.com/GibbonEdu/core Version: v26.0.00 Tested on:...

7.4AI score0.26089EPSS
Exploits4
zdt
zdt
added 2024/04/01 12:0 a.m.233 views

Gibbon 26.0.00 Server-Side Template Injection / Remote Code Execution Exploit

Exploit Title: Gibbon LMS has an SSTI vulnerability on the v26.0.00 version Exploit Author: SecondX.io Research TeamIslam Rzayev,Fikrat Guliev, Ali Maharramli Vendor Homepage: https://gibbonedu.org/ Software Link: https://github.com/GibbonEdu/core Version: v26.0.00 Tested on: Ubuntu 22.0 CVE :...

9.8CVSS9.7AI score0.26089EPSS
Exploits4
Rows per page
Query Builder