TROYANOSYVIRUS
Back to CVEs

CVE-2025-26211

LOW
3.7

Description

Gibbon before 29.0.00 allows CSRF.

CVE Details

CVSS v3.1 Score3.7
SeverityLOW
CVSS VectorCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
Attack VectorNETWORK
ComplexityHIGH
Privileges RequiredNONE
User InteractionNONE
Published5/27/2025
Last Modified7/18/2025
Sourcenvd
Honeypot Sightings0

Affected Products

gibbonedu:gibbon

Weaknesses (CWE)

CWE-352

References

https://github.com/GibbonEdu/core/blob/be891ab97b058a933b68354559457c9e310c13b8/modules/Timetable%20Admin/tt_delete.php#L24(cve@mitre.org)
https://github.com/GibbonEdu/core/releases/tag/v29.0.00(cve@mitre.org)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.