Filtered by vendor Gibbon Subscriptions

Search

Switch to Advanced Search (Beta)
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-34831 2 Gibbon, Gibbonedu 2 Core, Gibbon 2025-07-17 6.1 Medium
cross-site scripting (XSS) vulnerability in Gibbon Core v26.0.00 allows an attacker to execute arbitrary code via the imageLink parameter in the library_manage_catalog_editProcess.php component.
CVE-2024-51337 2 Gibbon, Gibbonedu 2 Core, Gibbon 2025-07-17 3.5 Low
Cross Site Scripting vulnerability in Gibbon before v.27.0.01 and fixed in v.28.0.00 allows a remote attacker to obtain sensitive information via the email parameter found in /Gibbon/modules/User Admin/user_manage_editProcess.php.