A vulnerability was found in Gibbon up to 26.0.00. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file modules/System%20Admin/import_run.php&type=externalAssessment&step=4 of the component POST Request Handler. The manipulation of the argument columnOrder leads to deserialization.

This vulnerability is known as CVE-2024-24725. The attack can be launched remotely. Furthermore, there is an exploit available.