Gibbon@* Security Vulnerabilities and Issues — Gibbon@* CVE List

Lucene search

GibboneduGibbon*

3 matches found

CVE•added 2022/05/25 4:15 p.m.•65 views

CVE-2022-27305

Gibbon v23 does not generate a new session ID cookie after a user authenticates, making the application vulnerable to session fixation.

8.8CVSS8.6AI score0.00374EPSS

CVE•added 2024/11/21 7:15 p.m.•41 views

CVE-2024-51337

Cross Site Scripting vulnerability in Gibbon before v.27.0.01 and fixed in v.28.0.00 allows a remote attacker to obtain sensitive information via the email parameter found in /Gibbon/modules/User Admin/user_manage_editProcess.php.

3.5CVSS6.2AI score0.00302EPSS

Web

CVE•added 2025/05/27 4:15 a.m.•34 views

CVE-2025-26211

Gibbon before 29.0.00 allows CSRF.

8.8CVSS7AI score0.00022EPSS