Vulnerabilities

CVE-2026-8208

by Fred · 09/05/2026

Gibbon versions before v30.0.01 are affected by a local file inclusion vulnerability resulting in RCE by changing the report archive directory and forcing interpretation of a user provided .zip as PHP. Successful exploitation requires Teacher or higher privileges. Exploitation could result in compromise of the underlying web server.

More information : https://github.com/GibbonEdu/core/releases/tag/v30.0.01

Similar

Tags: Cybersecurity Alert