Unrated severityNVD Advisory· Published Oct 4, 2021· Updated Aug 4, 2024
CVE-2021-37777
CVE-2021-37777
Description
Gila CMS 2.2.0 is vulnerable to Insecure Direct Object Reference (IDOR). Thumbnails uploaded by one site owner are visible by another site owner just by knowing the other site name and fuzzing for picture names. This leads to sensitive information disclosure.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Gila CMS/Gila CMSdescription
Patches
Vulnerability mechanics
References
1- www.navidkagalwalla.com/gila-cms-vulnerabilitiesmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.