Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
GibbonEdu Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2023-34598 - Vulnerability Database
GibbonEdu

GibbonEdu Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2023-34598

Critical
Reference: CVE-2023-34598
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2023-34598
Title: GibbonEdu Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Overview:

Gibbon v25.0.0 is vulnerable to a Local File Inclusion (LFI) where it39s possible to include the content of several files present in the installation folder in the server39s response.