gilacms/gila is vulnerable to SQL Injection. The vulnerability is due to improper user_id
parameter sanitization within the login portal, which allows an attacker to execute arbitrary web scripts which results in SQL injection.
CPE | Name | Operator | Version |
---|---|---|---|
gilacms/gila | le | v115.x-dev | |
gilacms/gila | le | v115.x-dev |