Jkana

**Name of the Vulnerable Software and Affected Versions** Gila CMS version 1.16.0 **Description** The issue allows an attacker to upload a shell to the tmp directory and abuse .htaccess through the logs function for executing PHP files. **Recommendations** For Gila CMS version 1.16.0, consider disabling the logs function as a temporary workaround until a patch is available. Restrict access to the tmp directory to minimize the risk of exploitation. Avoid using the logs function for executing PHP files until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** HorizontCMS version 1.0.0-beta **Description** The issue allows an authenticated remote attacker to upload PHP code through a zip file by uploading a theme. The attacker can then execute the PHP file via an HTTP GET request to /themes/<php file name>. **Recommendations** For HorizontCMS version 1.0.0-beta, consider restricting access to the theme upload feature to prevent unauthorized file uploads until a patch is available. As a temporary workaround, restrict access to the /themes/ directory to minimize the risk of exploitation.