Local File Inclusion (LFI) vulnerability in Gibbon v25.0.0 allows arbitrary file inclusion

Local File Inclusion (LFI) vulnerability in Gibbon v25.0.0 allows arbitrary file inclusion

CVE-2023-34598 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Gibbon v25.0.0 is vulnerable to a Local File Inclusion (LFI) where it's possible to include the content of several files present in the installation folder in the server's response.

Learn more about our Cis Benchmark Audit For Server Software.