{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-03T00:59:12.604","vulnerabilities":[{"cve":{"id":"CVE-2023-45878","sourceIdentifier":"cve@mitre.org","published":"2023-11-14T06:15:29.040","lastModified":"2025-01-08T17:15:14.387","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"GibbonEdu Gibbon version 25.0.1 and before allows Arbitrary File Write because rubrics_visualise_saveAjax.phps does not require authentication. The endpoint accepts the img, path, and gibbonPersonID parameters. The img parameter is expected to be a base64 encoded image. If the path parameter is set, the defined path is used as the destination folder, concatenated with the absolute path of the installation directory. The content of the img parameter is base64 decoded and written to the defined file path. This allows creation of PHP files that permit Remote Code Execution (unauthenticated)."},{"lang":"es","value":"GibbonEdu Gibbon versión 25.0.1 y anteriores permite la escritura arbitraria de archivos porque rubrics_visualise_saveAjax.phps no requiere autenticación. El endpoint acepta los parámetros img, path y gibbonPersonID. Se espera que el parámetro img sea una imagen codificada en base64. Si se establece el parámetro de ruta, la ruta definida se utiliza como carpeta de destino, concatenada con la ruta absoluta del directorio de instalación. El contenido del parámetro img se decodifica en base64 y se escribe en la ruta del archivo definida. Esto permite la creación de archivos PHP que permiten la ejecución remota de código (no autenticado)."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:gibbonedu:gibbon:*:*:*:*:*:*:*:*","versionEndIncluding":"25.0.01","matchCriteriaId":"41E3249E-3016-411A-8B2F-5B534497F33C"}]}]}],"references":[{"url":"https://herolab.usd.de/security-advisories/usd-2023-0025/","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"https://herolab.usd.de/security-advisories/usd-2023-0025/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]}]}}]}