Description

GibbonEdu Gibbon through version 25.0.0 allows Directory Traversal via the report template builder. An attacker can create a new Asset Component. The templateFileDestination parameter can be set to an arbitrary pathname (and extension). This allows creation of PHP files outside of the uploads directory, directly in the webroot.

Remediation

References

CVE-2023-45880

Related Vulnerabilities

WordPress Plugin AceIDE Local File Inclusion (2.6.2)

Jboss EAP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-2405)

WordPress Plugin Add Any Extension to Pages Cross-Site Scripting (1.3)

WordPress Plugin WP eCommerce SQL Injection (3.11.3)

XWiki CVE-2023-26471 Vulnerability (CVE-2023-26471)

Severity

High

Classification

CVE-2023-45880 CWE-22 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities