Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2019-11515
Disclosure Date: April 25, 2019 (last updated November 27, 2024)
core/classes/db_backup.php in Gila CMS 1.10.1 allows admin/db_backup?download= absolute path traversal to read arbitrary files.
0
Attacker Value
Unknown
CVE-2019-11456
Disclosure Date: April 22, 2019 (last updated November 27, 2024)
Gila CMS 1.10.1 allows fm/save CSRF for executing arbitrary PHP code.
0
