Описание
GibbonEdu Gibbon through version 25.0.0 allows Directory Traversal via the report template builder. An attacker can create a new Asset Component. The templateFileDestination parameter can be set to an arbitrary pathname (and extension). This allows creation of PHP files outside of the uploads directory, directly in the webroot.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 25.0.00 (включая)
cpe:2.3:a:gibbonedu:gibbon:*:*:*:*:*:*:*:*
EPSS
Процентиль: 62%
0.0043
Низкий
7.2 High
CVSS3
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 7.2
github
около 2 лет назад
GibbonEdu Gibbon through version 25.0.0 allows Directory Traversal via the report template builder. An attacker can create a new Asset Component. The templateFileDestination parameter can be set to an arbitrary pathname (and extension). This allows creation of PHP files outside of the uploads directory, directly in the webroot.
EPSS
Процентиль: 62%
0.0043
Низкий
7.2 High
CVSS3
Дефекты
CWE-22