Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
githubGitHub Advisory DatabaseGHSA-RPJW-97P8-P2XP
HistoryJan 03, 2024 - 12:30 a.m.

Gila CMS SQL Injection

2024-01-0300:30:22
CWE-89
GitHub Advisory Database
github.com
10
sql injection
gila cms
administration
widget
remote attacker
arbitrary web scripts
login portal
software

3.8 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N

8.4 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

50.7%

JSON

SQL Injection vulnerability discovered in Gila CMS 1.15.4 and earlier allows a remote attacker to execute arbitrary web scripts via the Area parameter under the Administration>Widget tab after the login portal.

Affected configurations

Vulners
Node
gilacmsgila_cmsRange1.15.4
CPENameOperatorVersion
gilacms/gilale1.15.4

Related

osv 1
veracode 1
cvelist 1
cve 1
nvd 1
prion 1
cnvd 1
zdt 1
packetstorm 1
osv
osv
Gila CMS SQL Injection
2024-01-03 00:30:22
veracode
veracode
SQL Injection
2024-01-04 05:12:47
cvelist
cvelist
CVE-2020-26623
2024-01-02 00:00:00
cve
cve
CVE-2020-26623
2024-01-02 22:15:07
nvd
nvd
CVE-2020-26623
2024-01-02 22:15:07
prion
prion
Sql injection
2024-01-02 22:15:00
cnvd
cnvd
Gila CMS Area Parameter SQL Injection Vulnerability
2024-01-08 00:00:00
zdt
zdt
GilaCMS 1.15.4 SQL Injection Vulnerability
2023-12-22 00:00:00
packetstorm
packetstorm
GilaCMS 1.15.4 SQL Injection
2023-12-22 00:00:00

3.8 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N

8.4 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

50.7%

JSON
Related for GHSA-RPJW-97P8-P2XP
osv1veracode1cvelist1cve1nvd1prion1cnvd1zdt1packetstorm1