Lucene search
Veracode Vulnerability DatabaseVERACODE:44928HistoryJan 04, 2024 - 5:01 a.m.
SQL Injection
2024-01-0405:01:25
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
sql injection
gilacms
user_id parameter
web scripts
software vulnerability
gilacms/gila is vulnerable to SQL Injection. The vulnerability is due to improper user_id parameter sanitization within the login portal, which allows an attacker to execute arbitrary web scripts which results in SQL injection.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gilacms/gila | le | v115.x-dev | |
| gilacms/gila | le | v115.x-dev |
Related
osv
osv
Gila CMS SQL Injection vulnerability
2024-01-03 00:30:23
cvelist
cvelist
CVE-2020-26625
2024-01-02 00:00:00
prion
prion
Sql injection
2024-01-02 22:15:00
github
github
Gila CMS SQL Injection vulnerability
2024-01-03 00:30:23
cve
cve
CVE-2020-26625
2024-01-02 22:15:07
zdt
zdt
GilaCMS 1.15.4 SQL Injection Vulnerability
2023-12-22 00:00:00
packetstorm
packetstorm
GilaCMS 1.15.4 SQL Injection
2023-12-22 00:00:00