2021-10-04 13:45:26
mitre
PUBLISHED
A Stored XSS via Malicious File Upload exists in Gila CMS version 2.2.0. An attacker can use this to steal cookies, passwords or to run arbitrary code on a victims browser.