Gibbon Security Vulnerabilities and Issues — Gibbon CVE List

Lucene search

GibboneduGibbon

3 matches found

CVE•added 2022/02/03 3:15 a.m.•52 views

CVE-2022-23871

Multiple cross-site scripting (XSS) vulnerabilities in the component outcomes_addProcess.php of Gibbon CMS v22.0.01 allow attackers to execute arbitrary web scripts or HTML via a crafted payload insterted into the name, category, description parameters.

5.4CVSS5.4AI score0.00206EPSS

CVE•added 2021/09/13 12:15 p.m.•28 views

CVE-2021-40214

Gibbon v22.0.00 suffers from a stored XSS vulnerability within the wall messages component.

5.4CVSS5.1AI score0.00258EPSS

CVE•added 2023/11/14 6:15 a.m.•24 views

CVE-2023-45879

GibbonEdu Gibbon version 25.0.0 allows HTML Injection via an IFRAME element to the Messager component.

5.4CVSS5.6AI score0.00231EPSS