CVE-2024-24724

Gibbon LMS v26.0.00 - SSTI vulnerability

Severity Score

9.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Attend

*SSVC

Descriptions

Gibbon through 26.0.00 allows /modules/School%20Admin/messengerSettings.php Server Side Template Injection leading to Remote Code Execution because input is passed to the Twig template engine (messengerSettings.php) without sanitization.

Gibbon hasta 26.0.00 permite /modules/School%20Admin/messengerSettings.php la inyección de plantilla del lado del servidor que conduce a la ejecución remota de código porque la entrada se pasa al motor de plantilla Twig (messengerSettings.php) sin sanitización.

Gibbon version 26.0.00 suffers from a server-side template injection vulnerability that allows for remote code execution.

*Credits: N/A

CVSS Scores

CISAv3.1 9.8

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Attend

Exploitation

Poc

Automatable

Yes

Tech. Impact

Total

* Organization's Worst-case Scenario

Timeline

2024-01-27 CVE Reserved
2024-04-01 CVE Published
2024-04-02 First Exploit
2024-08-16 CVE Updated
2024-10-17 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-1336: Improper Neutralization of Special Elements Used in a Template Engine

CAPEC

References (3)

URL	Tag	Source
https://gibbonedu.org/download
https://packetstormsecurity.com/files/177857

URL	Date	SRC
https://www.exploit-db.com/exploits/51962	2024-04-02

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
-		-				-		-		-