CNNVD-202508-3436 Information

CNNVD ID

CNNVD-202508-3436

Related CVE

CVE-2025-55175

• CNNVD Published: 2025-08-28

Description (Chinese)

QuickCMS是QuickCMS开源的一款内容管理系统。 QuickCMS 6.8版本存在跨站脚本漏洞，该漏洞源于admin面板功能中sLangEdit参数存在反射型跨站脚本，可能导致任意JavaScript执行。

Description (English)

QuickCMS is an open-source QuickCMS content management system. QuickCMS version 6.8 has a cross-site script loophole, which stems from the reflective cross-site script of the SLangEdit parameter in the admin panel function, which may result in the arbitrary execution of JavaScript.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

QuickCMS

Published

2025-08-28

Last Modified

2026-02-24

References

https://opensolution.org https://cert.pl/posts/2025/08/CVE-2025-54540 https://nvd.nist.gov/vuln/detail/CVE-2025-55175