Lucene search
K

84 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.21 views

EUVD-2023-47761

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00644EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-47759

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00486EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-47762

Malicious code in bioql PyPI...

8.6CVSS8.6AI score0.00358EPSS
Exploits1References1
NVD
NVD
added 2025/08/28 11:15 a.m.5 views

CVE-2025-54540

QuickCMS is vulnerable to Reflected XSS via sSort parameter in admin's panel functionality. A malicious attacker can craft a specially crafted URL that, when opened, results in arbitrary JavaScript execution in the victim's browser. The vendor was notified early about this vulnerability, but didn...

6.1CVSS0.00236EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/28 10:12 a.m.1 views

CVE-2025-54543 Stored XSS in QuickCMS

QuickCMS is vulnerable to Stored XSS via sDescriptionMeta parameter in page editor SEO functionality. Malicious attacker with admin privileges can inject arbitrary HTML and JS into website, which will be rendered/executed when visiting edited page. By default admin user is not able to add...

5.3CVSS5.2AI score0.00182EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/28 12:0 a.m.8 views

PT-2025-34984

Name of the Vulnerable Software and Affected Versions: QuickCMS version 6.8 Description: QuickCMS transmits passwords and login credentials via GET requests, potentially allowing a local attacker with access to a victim’s browser history to obtain credentials and log in as the user...

6.9CVSS6.2AI score0.00236EPSS
Exploits0References5
NVD
NVD
added 2025/08/20 1:15 p.m.4 views

CVE-2025-54175

QuickCMS.EXT is vulnerable to Reflected XSS in sFileName parameter in thumbnail viewer functionality. An attacker can craft a malicious URL that results in arbitrary JavaScript execution in the victim's browser when opened. The vendor was notified early about this vulnerability, but didn't respon...

6.1CVSS0.00215EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.7 views

PT-2025-34052

Name of the Vulnerable Software and Affected Versions: QuickCMS.EXT version 6.8 QuickCMS.EXT affected versions not specified Description: QuickCMS.EXT is susceptible to a Reflected Cross-Site Scripting XSS issue within the thumbnail viewer functionality. An attacker can create a malicious URL tha...

6.1CVSS6.1AI score0.00215EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/08/20 12:0 a.m.4 views

PT-2025-34050

Name of the Vulnerable Software and Affected Versions: QuickCMS version 6.8 QuickCMS affected versions not specified Description: QuickCMS is vulnerable to Stored Cross-Site Scripting XSS in the sTitle parameter within the page editor functionality. A malicious attacker with admin privileges can...

4.8CVSS5.5AI score0.0018EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/05/23 4:23 a.m.12 views

CVE-2023-43343

Cross-site scripting XSS vulnerability in opensolution Quick CMS v.6.7 allows a local attacker to execute arbitrary code via a crafted script to the Files - Description parameter in the Pages Menu component...

5.4CVSS6.2AI score0.00677EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 2:11 a.m.9 views

CVE-2023-43346

Cross-site scripting XSS vulnerability in opensolution Quick CMS v.6.7 allows a local attacker to execute arbitrary code via a crafted script to the Backend - Dashboard parameter in the Languages Menu component...

5.4CVSS6.2AI score0.00485EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:44 a.m.9 views

CVE-2023-43342

Cross-site scripting XSS vulnerability in opensolution Quick CMS v.6.7 allows a local attacker to execute arbitrary code via a crafted script to the Languages Menu component...

5.4CVSS6.2AI score0.00486EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/11/29 12:0 a.m.13 views

OpenSolution Quick CMS 安全漏洞

OpenSolution Quick CMS is a free content management system from the OpenSolution organization. A security vulnerability exists in OpenSolution Quick CMS version 6.7 that stems from improper validation of user-supplied input, absolute path traversal, and allows an attacker to delete files stored o...

9.1CVSS6.6AI score0.00812EPSS
Exploits0References1
0day.today
0day.today
added 2024/06/13 12:0 a.m.267 views

Quick CMS 6.7 Shell Upload Vulnerability

Title : Authenticated Shell Upload Product : Quick CMS Vendor : https://opensolution.org/ Affected Version : 6.7 Researcher : Eagle Eye Tested on : Window & Linux Report : Already contact the vendor but no response Affected path : admin.php , core/common-admin.php, database/config.php Affected...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/06/13 12:0 a.m.316 views

Quick CMS 6.7 Shell Upload

Title : Authenticated Shell Upload Product : Quick CMS Vendor : https://opensolution.org/ Affected Version : 6.7 Researcher : Eagle Eye Tested on : Window & Linux Date : 11/06/2024 Report : Already contact the vendor but no response Affected path : admin.php , core/common-admin.php,...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2024/04/03 12:0 a.m.385 views

Quick CMS v6.7 en 2023 - 'password' SQLi

Title: Quick CMS v6.7 en 2023 - 'password' SQLi Author: nu11secur1ty Date: 03/19/2024 Vendor: https://opensolution.org/ Software: https://opensolution.org/download/home.html?sFile=Quick.Cmsv6.7-en.zip Reference: https://portswigger.net/web-security/sql-injection Description: The password paramete...

7.4AI score
Exploits0
0day.today
0day.today
added 2024/04/03 12:0 a.m.412 views

Quick CMS v6.7 en 2023 - (password) SQL injection Vulnerability

Title: Quick CMS v6.7 en 2023 - 'password' SQLi Author: nu11secur1ty Vendor: https://opensolution.org/ Software: https://opensolution.org/download/home.html?sFile=Quick.Cmsv6.7-en.zip Reference: https://portswigger.net/web-security/sql-injection Description: The password parameter is vulnerable f...

7.4AI score
Exploits0
NVD
NVD
added 2023/10/20 11:15 p.m.16 views

CVE-2023-43346

Cross-site scripting XSS vulnerability in opensolution Quick CMS v.6.7 allows a local attacker to execute arbitrary code via a crafted script to the Backend - Dashboard parameter in the Languages Menu component...

5.4CVSS5.5AI score0.00485EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/10/20 11:15 p.m.6 views

CVE-2023-43346

Cross-site scripting XSS vulnerability in opensolution Quick CMS v.6.7 allows a local attacker to execute arbitrary code via a crafted script to the Backend - Dashboard parameter in the Languages Menu component...

5.4CVSS6.1AI score0.00485EPSS
Exploits1References3
Prion
Prion
added 2023/10/20 11:15 p.m.18 views

Cross site scripting

Cross-site scripting XSS vulnerability in opensolution Quick CMS v.6.7 allows a local attacker to execute arbitrary code via a crafted script to the Backend - Dashboard parameter in the Languages Menu component...

4.9CVSS5.5AI score0.00485EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder