Description

GibbonEdu Gibbon version 25.0.0 allows HTML Injection via an IFRAME element to the Messager component.

Remediation

References

CVE-2023-45879

Related Vulnerabilities

WordPress Plugin uTubeVideo Gallery Unspecified Vulnerability (2.0.6)

WordPress Plugin Trust Form Cross-Site Scripting (2.0)

Joomla! Core 3.7.0 SQL Injection (3.7.0)

WordPress Plugin WP Background Takeover Directory Traversal (4.1.4)

WordPress Plugin Google Captcha (reCAPTCHA) by BestWebSoft Security Bypass (1.12)

Severity

Medium

Classification

CVE-2023-45879 CWE-707 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities