Published: 29/06/2023 Updated: 06/07/2023

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 0

Gibbon v25.0.0 is vulnerable to a Local File Inclusion (LFI) where it's possible to include the content of several files present in the installation folder in the server's response.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gibbonedu gibbon 25.0.00

Check Point Reference: CPAI-2023-1438 Date Published: 8 Jan 2024 Severity: Critical ...

Gibbon本地文件包含漏洞（CVE-2023-34598）

CVE-2023-34598 Gibbon本地文件包含漏洞（CVE-2023-34598）

Gibbon v25.0.0 is vulnerable to a Local File Inclusion (LFI) vulnerability where it's possible to include the content of several files present in the installation folder in the server's response.

Gibbon v2500 - Local File Inclusion - CVE-2023-34598 Gibbon v2500 is vulnerable to a Local File Inclusion (LFI) vulnerability where it's possible to include the content of several files present in the installation folder in the server's response Proof of Concept In order to exploit the vulnerability, an attacker would need to manipulate the "q" paramete

CWE-22 https://github.com/maddsec/CVE-2023-34598 https://nvd.nist.gov https://github.com/Szlein/CVE-2023-34598 https://advisories.checkpoint.com/defense/advisories/public/2024/cpai-2023-1438.html

CVE-2023-34598

Vulnerability Summary

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect