AI Score
Confidence
Low
SSVC
Exploitation
poc
Automatable
no
Technical Impact
partial
GibbonEdu Gibbon version 25.0.0 allows HTML Injection via an IFRAME element to the Messager component.
herolab.usd.de/security-advisories/usd-2023-0019/