2 matches found
CVE-2020-20696
A cross-site scripting XSS vulnerability in /admin/content/post of GilaCMS v1.11.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the Tags field...
CVE-2020-20696
GilaCMS v1.11.4 contains a cross-site scripting (XSS) vulnerability in the /admin/content/post endpoint, exposed via a crafted payload in the Tags field. The issue is described as an XSS allowing execution of arbitrary web scripts or HTML, as stated in multiple connected sources referencing CVE-2...