CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

Veracode•added 2020/05/26 9:5 a.m.•21 views

Cross-site Scripting (XSS)

gilacms/gila is vulnerable to cross-site scripting XSS. The attack exists because the admin/content/postcategory id parameter is not sanitized properly for gpreviewtheme...

6.1CVSS1.9AI score0.00419EPSS

Exploits3References3Affected Software1

OSV•added 2020/05/21 10:15 p.m.•1 views

CVE-2019-20803

Gila CMS before 1.11.6 has reflected XSS via the admin/content/postcategory id parameter, which is mishandled for gpreviewtheme...

6.1CVSS6.3AI score0.00419EPSS

Exploits3References3

NVD•added 2020/05/21 10:15 p.m.•9 views

CVE-2019-20803

Gila CMS before 1.11.6 has reflected XSS via the admin/content/postcategory id parameter, which is mishandled for gpreviewtheme...

6.1CVSS6.1AI score0.00419EPSS

Exploits3References3

Prion•added 2020/05/21 10:15 p.m.•9 views

Cross site scripting

Gila CMS before 1.11.6 has reflected XSS via the admin/content/postcategory id parameter, which is mishandled for gpreviewtheme...

4.3CVSS6AI score0.00419EPSS

Exploits3References3Affected Software1

Cvelist•added 2020/05/21 9:51 p.m.•12 views

CVE-2019-20803

Gila CMS before 1.11.6 has reflected XSS via the admin/content/postcategory id parameter, which is mishandled for gpreviewtheme...

6.1AI score0.00419EPSS

Exploits3References3

Positive Technologies•added 2020/05/21 12:0 a.m.•2 views

PT-2020-10773 · Gila · Gila Cms

Name of the Vulnerable Software and Affected Versions: Gila CMS versions prior to 1.11.6 Description: The issue is related to reflected XSS, which occurs via the id parameter in the admin/content/postcategory endpoint. This parameter is mishandled when g preview theme is used. Recommendations: Fo...

6.1CVSS6AI score0.00419EPSS

Exploits3References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by