2020-11-16 17:29:31
mitre
PUBLISHED
In Gila CMS 1.16.0, an attacker can upload a shell to tmp directy and abuse .htaccess through the logs function for executing PHP files.