Описание
Gibbon v25.0.0 is vulnerable to a Local File Inclusion (LFI) where it's possible to include the content of several files present in the installation folder in the server's response.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:gibbonedu:gibbon:25.0.00:*:*:*:*:*:*:*
EPSS
Процентиль: 100%
0.90829
Критический
9.8 Critical
CVSS3
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 9.8
github
больше 2 лет назад
Gibbon v25.0.0 is vulnerable to a Local File Inclusion (LFI) where it's possible to include the content of several files present in the installation folder in the server's response.
EPSS
Процентиль: 100%
0.90829
Критический
9.8 Critical
CVSS3
Дефекты
CWE-22