Description

GibbonEdu Gibbon through version 25.0.0 allows Directory Traversal via the report template builder. An attacker can create a new Asset Component. The templateFileDestination parameter can be set to an arbitrary pathname (and extension). This allows creation of PHP files outside of the uploads directory, directly in the webroot.

Remediation

References

CVE-2023-45880

Related Vulnerabilities

WordPress Plugin Ecwid Ecommerce Shopping Cart Cross-Site Request Forgery (6.10.23)

WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-5715)

OpenSSL Resource Management Errors Vulnerability (CVE-2010-2939)

Apache Tomcat Resource Management Errors Vulnerability (CVE-2011-0534)

WordPress Other Vulnerability (CVE-2006-1263)

Severity

High

Classification

CVE-2023-45880 CWE-22 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities