Vulnerabilities > Opensolution > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-19 | CVE-2023-43345 | Cross-site Scripting vulnerability in Opensolution Quick CMS 6.7 Cross-site scripting (XSS) vulnerability in opensolution Quick CMS v.6.7 allows a local attacker to execute arbitrary code via a crafted script to the Content - Name parameter in the Pages Menu component. | 8.6 |
| 2021-01-28 | CVE-2020-35754 | Code Injection vulnerability in Opensolution Quick.Cart and Quick.Cms OpenSolution Quick.CMS < 6.7 and Quick.Cart < 6.7 allow an authenticated user to perform code injection (and consequently Remote Code Execution) via the input fields of the Language tab. | 7.2 |
| 2009-04-24 | CVE-2009-1410 | SQL Injection vulnerability in Opensolution Quick.Cms.Lite 0.5 SQL injection vulnerability in index.php in Quick.Cms.Lite 0.5 allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |