3 matches found
CVE-2020-20726
Cross Site Request Forgery vulnerability in Gila GilaCMS v.1.11.4 allows a remote attacker to execute arbitrary code via the cm/updaterows/user parameter...
CVE-2020-20726
Cross Site Request Forgery vulnerability in Gila GilaCMS v.1.11.4 allows a remote attacker to execute arbitrary code via the cm/updaterows/user parameter...
CVE-2020-20726
CVE-2020-20726 affects Gila GilaCMS v1.11.4. The vulnerability is Cross-Site Request Forgery in the cm/update_rows/user parameter, allowing a remote attacker to execute arbitrary code. Root cause described as lack of validation in that parameter. Impact is high (C, I, A all High) per CVSS 3.1 met...