Vulnerabilities > Gibbonedu

DATE CVE VULNERABILITY TITLE RISK
2021-09-03 CVE-2021-40492 Cross-site Scripting vulnerability in Gibbonedu Gibbon 22.0.00
A reflected XSS vulnerability exists in multiple pages in version 22 of the Gibbon application that allows for arbitrary execution of JavaScript (gibbonCourseClassID, gibbonPersonID, subpage, currentDate, or allStudents to index.php).
network
low complexity
gibbonedu CWE-79
6.1
6.1