Gila Cms Security Vulnerabilities and Issues — Gila Cms CVE List

Lucene search

GilacmsGila Cms

4 matches found

CVE•added 2024/08/12 1:38 p.m.•46 views

CVE-2024-7657

A vulnerability classified as problematic was found in Gila CMS 1.10.9. This vulnerability affects unknown code of the file /cm/update_rows/page?id=2 of the component HTTP POST Request Handler. The manipulation of the argument content leads to cross site scripting. The attack can be initiated remot...

5.4CVSS3.8AI score0.00075EPSS

CVE•added 2021/10/04 2:15 p.m.•34 views

CVE-2021-39486

A Stored XSS via Malicious File Upload exists in Gila CMS version 2.2.0. An attacker can use this to steal cookies, passwords or to run arbitrary code on a victim's browser.

5.4CVSS5.4AI score0.00206EPSS

CVE•added 2021/09/27 10:15 p.m.•32 views

CVE-2020-20696

A cross-site scripting (XSS) vulnerability in /admin/content/post of GilaCMS v1.11.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the Tags field.

5.4CVSS5.2AI score0.00261EPSS

Web

CVE•added 2021/09/27 10:15 p.m.•31 views

CVE-2020-20695

A stored cross-site scripting (XSS) vulnerability in GilaCMS v1.11.4 allows attackers to execute arbitrary web scripts or HTML via a crafted SVG file.

5.4CVSS5.2AI score0.00261EPSS