Primary

Context

Gibbon Cross-Site Request Forgery Vulnerability

Vulnerability

Patched

A cross-site request forgery (CSRF) vulnerability exists in Gibbon versions prior to 29.0.00. This issue allows an attacker to trick a user into performing actions they did not intend to, potentially leading to unauthorized changes or actions within the application.

Impact

Exploitation of this vulnerability could allow for cross-site request forgery, where an attacker could manipulate a user's actions within the application.

Remediation

Users can upgrade to Gibbon version 29.0.00 or later to address this vulnerability. Instructions for updating Gibbon are available in the Gibbon Updating Guide.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.1

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.1

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Gibbon Cross-Site Request Forgery Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Gibbon

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating