CVE-2026-8209: CWE-23 Relative path traversal in gibbonedu gibbon
Gibbon versions before v30. 0. 01 contain a relative path traversal vulnerability (CWE-23) that can lead to a denial of service (DoS) condition. The issue arises when a user with Teacher or higher privileges attempts to extract web application PHP files via a . zip archive. If the extraction fails, the targeted file is deleted, causing loss of availability of the web application. The vulnerability has a medium severity with a CVSS score of 6. 9. No official patch or remediation guidance is currently available from the vendor. Exploitation requires elevated privileges and does not involve user interaction or network complexity beyond high attack complexity.
AI Analysis
Technical Summary
CVE-2026-8209 is a relative path traversal vulnerability in the Gibbon web application prior to version 30.0.01. It allows users with Teacher or higher privileges to trigger deletion of PHP files during failed .zip extraction attempts, resulting in denial of service by making the web application unavailable. The vulnerability is classified under CWE-23 and has a CVSS 4.0 base score of 6.9, indicating medium severity. The attack complexity is high and requires privileged access. No official patch or vendor advisory is currently available, and the product is not a cloud service, so remediation depends on vendor updates.
Potential Impact
Successful exploitation leads to deletion of web application PHP files during failed .zip extraction attempts, causing denial of service by loss of availability of the Gibbon web application. The attack requires Teacher or higher privileges, limiting the scope to authorized users with elevated access. There is no indication of data confidentiality or integrity impact. No known exploits have been reported in the wild.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, restrict Teacher or higher privileges to trusted users only and monitor for unusual file extraction activities. Avoid uploading or extracting .zip archives containing PHP files within the application. Follow vendor communications for updates on patches or temporary mitigations.
CVE-2026-8209: CWE-23 Relative path traversal in gibbonedu gibbon
Description
Gibbon versions before v30. 0. 01 contain a relative path traversal vulnerability (CWE-23) that can lead to a denial of service (DoS) condition. The issue arises when a user with Teacher or higher privileges attempts to extract web application PHP files via a . zip archive. If the extraction fails, the targeted file is deleted, causing loss of availability of the web application. The vulnerability has a medium severity with a CVSS score of 6. 9. No official patch or remediation guidance is currently available from the vendor. Exploitation requires elevated privileges and does not involve user interaction or network complexity beyond high attack complexity.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-8209 is a relative path traversal vulnerability in the Gibbon web application prior to version 30.0.01. It allows users with Teacher or higher privileges to trigger deletion of PHP files during failed .zip extraction attempts, resulting in denial of service by making the web application unavailable. The vulnerability is classified under CWE-23 and has a CVSS 4.0 base score of 6.9, indicating medium severity. The attack complexity is high and requires privileged access. No official patch or vendor advisory is currently available, and the product is not a cloud service, so remediation depends on vendor updates.
Potential Impact
Successful exploitation leads to deletion of web application PHP files during failed .zip extraction attempts, causing denial of service by loss of availability of the Gibbon web application. The attack requires Teacher or higher privileges, limiting the scope to authorized users with elevated access. There is no indication of data confidentiality or integrity impact. No known exploits have been reported in the wild.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, restrict Teacher or higher privileges to trusted users only and monitor for unusual file extraction activities. Avoid uploading or extracting .zip archives containing PHP files within the application. Follow vendor communications for updates on patches or temporary mitigations.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- PRJBLK
- Date Reserved
- 2026-05-09T03:01:00.284Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69ffe1b2cbff5d8610ead45a
Added to database: 5/10/2026, 1:38:58 AM
Last enriched: 5/10/2026, 1:40:26 AM
Last updated: 5/10/2026, 9:16:28 AM
Views: 8
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.