Security Advisory

CVE-2026-8208

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-05-09 02:58:43

Last updated 2026-05-11 17:47:19

Assigner PRJBLK

State PUBLISHED

Description

Gibbon versions before v30.0.01 are affected by a local file inclusion vulnerability resulting in RCE by changing the report archive directory and forcing interpretation of a user provided .zip as PHP. Successful exploitation requires Teacher or higher privileges. Exploitation could result in compromise of the underlying web server.

← Browse all CVEs View on cve.org ↗