Approved changes feed: RSS · Atom

cpe:2.3:a:opensolution:quick.cms.ext:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorOpensolution (452db4e2-8665-579c-b90a-ad133fe1ce7e)
ProductQuick.Cms.Ext (b321ad82-dc31-5326-9e00-34991f3c4c6c)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-54175 vulnerable 2026-06-08 07:33:11.739767 Reflected Cross-Site Scripting in QuickCMS.EXT
QuickCMS.EXT is vulnerable to Reflected XSS in sFileName parameter in thumbnail viewer functionality.  An attacker can craft a malicious URL that results in arbitrary JavaScript execution in the victim's browser when opened. The vendor was notified early about this vulnerability, but didn't respond with the details of vulnerability or vulnerable version range. Only version 6.8 was tested and confirmed as vulnerable, other versions were not tested and might also be vulnerable.
Published: 2025-08-20T12:53:23.786Z
Updated: 2025-08-20T15:09:58.968Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.