Unrated severityNVD Advisory· Published May 21, 2020· Updated Aug 5, 2024
CVE-2019-20804
CVE-2019-20804
Description
Gila CMS before 1.11.6 allows CSRF with resultant XSS via the admin/themes URI, leading to compromise of the admin account.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Gila CMS/Gila CMSdescription
Patches
Vulnerability mechanics
References
3- packetstormsecurity.com/files/158201/GilaCMS-1.11.5-Cross-Site-Request-Forgery-Cross-Site-Scripting.htmlmitrex_refsource_MISC
- seclists.org/fulldisclosure/2020/Jun/29mitremailing-listx_refsource_FULLDISC
- github.com/GilaCMS/gila/issues/57mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.