2 matches found
CVE-2020-20692
creationtimestamp| type| source ---|---|--- 2021-09-28 02:35:11+00:00| seen| https://t.me/cibsecurity/29534...
CVE-2020-20692
CVE-2020-20692 affects GilaCMS v1.11.4 with a SQL injection via the $_GET parameter in /src/core/controllers/cm.php . Root cause: improper handling of user input enabling SQL injection. NVD metrics (CVSSv3.1) show base score 7.2 (HIGH), network attack, low complexity, privileges required: HIGH, n...