Vulnerabilities > Opensolution > Quick CMS > High

DATE CVE VULNERABILITY TITLE RISK
2023-10-19 CVE-2023-43345 Cross-site Scripting vulnerability in Opensolution Quick CMS 6.7
Cross-site scripting (XSS) vulnerability in opensolution Quick CMS v.6.7 allows a local attacker to execute arbitrary code via a crafted script to the Content - Name parameter in the Pages Menu component.
local
low complexity
opensolution CWE-79
8.6
8.6
2021-01-28 CVE-2020-35754 Code Injection vulnerability in Opensolution Quick.Cart and Quick.Cms
OpenSolution Quick.CMS < 6.7 and Quick.Cart < 6.7 allow an authenticated user to perform code injection (and consequently Remote Code Execution) via the input fields of the Language tab.
network
low complexity
opensolution CWE-94
7.2
7.2