A cross-site scripting (XSS) vulnerability in /admin/content/post of GilaCMS v1.11.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the Tags field.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| gilacms/gila(Packagist) | 0 | N/A | N/A |
CVSS Metrics
