CVE-2019-20804 (gila_cms)

Gila CMS before 1.11.6 allows CSRF with resultant XSS via the admin/themes URI, leading to compromise of the admin account.

View Full Alert