Headline
CVE-2020-20692: SQL injection in Gila CMS version 1.11.4 · Issue #50 · GilaCMS/gila
GilaCMS v1.11.4 was discovered to contain a SQL injection vulnerability via the $_GET parameter in /src/core/controllers/cm.php.
Related news
CVE-2020-21121: SQL Injection Vulerable. · Issue #259 · Kliqqi-CMS/Kliqqi-CMS
Pligg CMS 2.0.2 contains a time-based SQL injection vulnerability via the $recordIDValue parameter in the admin_update_module_widgets.php file.