Gibbon Core 26.0.00 - Stored Cross-Site Scripting via imageLink Parameter
cross-site scripting (XSS) vulnerability in Gibbon Core v26.0.00 allows an attacker to execute arbitrary code via the imageLink parameter in the library_manage_catalog_editProcess.php component.