CVE List

CVE-2019-20804

Critical 8.8

Gila CMS before 1.11.6 allows CSRF with resultant XSS via the admin/themes URI, leading to compromise of the admin account.

Published May 22, 2020.

Affected software

Gilacms Gila CMS

Reference links

Sign Up for Alerts