Lucene search
China National Vulnerability DatabaseCNVD-2023-64115HistoryAug 15, 2023 - 12:00 a.m.
Gila CMS Cross-Site Scripting Vulnerability (CNVD-2023-64115)
2023-08-1500:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
gila cms
cross-site scripting
php
mysql
vulnerability
web script
html
injection
cnvd-2023-64115
0.001 Low
EPSS
Percentile
28.0%
Gila CMS is an open source content management system (CMS) based on PHP and MySQL. A cross-site scripting vulnerability exists in Gila CMS version 1.11.3, which stems from the lack of effective filtering and escaping of user-supplied data by the parameter adm_user, and can be exploited by an attacker to execute arbitrary web script or HTML by injecting a crafted payload.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gila cms gila cms | eq | 1.11.3 |
Related
nvd
nvd
CVE-2020-20523
2023-08-11 14:15:10
github
github
Gila CMS Cross-site Scripting Vulnerability
2023-08-11 15:30:45
osv
osv
Gila CMS Cross-site Scripting Vulnerability
2023-08-11 15:30:45
prion
prion
Cross site scripting
2023-08-11 14:15:00
cve
cve
CVE-2020-20523
2023-08-11 14:15:10
cvelist
cvelist
CVE-2020-20523
2023-08-11 00:00:00