Vulnerabilities > Gibbonedu > Gibbon > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-14 | CVE-2023-45878 | Unspecified vulnerability in Gibbonedu Gibbon GibbonEdu Gibbon version 25.0.1 and before allows Arbitrary File Write because rubrics_visualise_saveAjax.phps does not require authentication. | 9.8 |
| 2023-06-29 | CVE-2023-34598 | Path Traversal vulnerability in Gibbonedu Gibbon 25.0.00 Gibbon v25.0.0 is vulnerable to a Local File Inclusion (LFI) where it's possible to include the content of several files present in the installation folder in the server's response. | 9.8 |