GibbonEdu Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2023-45879 - Vulnerability Database

GibbonEdu Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2023-45879

Medium
Reference: CVE-2023-45879
Title: GibbonEdu Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Overview:

GibbonEdu Gibbon version 25.0.0 allows HTML Injection via an IFRAME element to the Messager component.