Vulnerability Details CVE-2021-40492
A reflected XSS vulnerability exists in multiple pages in version 22 of the Gibbon application that allows for arbitrary execution of JavaScript (gibbonCourseClassID, gibbonPersonID, subpage, currentDate, or allStudents to index.php).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.153
EPSS Ranking 94.3%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References