Gila.CMS.Image.Upload.Remote.Code.Execution
Description
This indicates an attack attempt to exploit an Arbitrary File Upload Vulnerability in Gila CMS Gila.
The vulnerability is due to improper validation of user supplied files during image upload. A remote, unauthenticated attacker could exploit this vulnerability by sending a crafted HTTP request to the targeted server. Successful exploitation of the vulnerability could lead to arbitrary code execution under the security context of the service.
Affected Products
Gila CMS Gila 1.11.8 and before
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://github.com/GilaCMS/gila/releases/tag/1.11.11
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |