CVE-2021-39486
EUVD-2021-2584304.10.2021, 14:15
A Stored XSS via Malicious File Upload exists in Gila CMS version 2.2.0. An attacker can use this to steal cookies, passwords or to run arbitrary code on a victim's browser.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| gilacms | gila_cms | 2.2.0 |
𝑥
= Vulnerable software versions