Vulnerabilities > Gilacms > Gila CMS > 2.2.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-04 | CVE-2021-37777 | Authorization Bypass Through User-Controlled Key vulnerability in Gilacms Gila CMS 2.2.0 Gila CMS 2.2.0 is vulnerable to Insecure Direct Object Reference (IDOR). | 7.5 |
| 2021-10-04 | CVE-2021-39486 | Cross-site Scripting vulnerability in Gilacms Gila CMS 2.2.0 A Stored XSS via Malicious File Upload exists in Gila CMS version 2.2.0. | 5.4 |