7 matches found
Gila CMS 1.11.8 CVE-2020-5515 - SQL Injection
CVE-2020-5515 Gila CMS version 1.11.8 suffers from a remote SQL injection vulnerability. Exploit Title: Gila CMS 1.11.8 - 'query' SQL Injection Date: 2020-06-15 Exploit Author: Carlos Ramírez L. BillyV4 Vendor Homepage: https://gilacms.com/ Software Link:...
Gila CMS 1.1.18.1 SQL Injection / Shell Upload
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require "net/http" require "uri" require 'nokogiri' class MetasploitModule 'Gila CMS 1.1.18.1 Shell Upload ', 'Description' = %q This module exploits...
Gila CMS 1.11.8 SQL Injection
Exploit Title: Gila CMS 1.11.8 - 'query' SQL Injection Date: 2020-06-15 Exploit Author: Carlos Ramírez L. BillyV4 Vendor Homepage: https://gilacms.com/ Software Link: https://github.com/GilaCMS/gila/releases/tag/1.11.8 Version: Gila 1.11.8 Tested on: Gila 1.11.8 CVE : CVE-2020-5515 import request...
Gila CMS 1.11.8 - (query) SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Gila CMS 1.11.8 - 'query' SQL Injection Exploit Author: Carlos Ramírez L. BillyV4 Vendor Homepage: https://gilacms.com/ Software Link: https://github.com/GilaCMS/gila/releases/tag/1.11.8 Version: Gila 1.11.8 Tested on: Gila 1.11...
CVE-2020-5515
Gila CMS 1.11.8 allows /admin/sql?query= SQL Injection...
CVE-2020-5515
Gila CMS 1.11.8 allows /admin/sql?query= SQL Injection...
CVE-2020-5515
CVE-2020-5515 affects Gila CMS 1.11.8 via a SQL Injection in the "/admin/sql?query=" parameter. Root cause: missing validation of external SQL in the query endpoint. Impact per sources includes potential data disclosure or alteration; public writeups describe exploitation pathways, including remo...