CNNVD-202510-3267 Information

CNNVD ID

CNNVD-202510-3267

Related CVE

CVE-2025-9980

• CNNVD Published: 2025-10-23

Description (Chinese)

Open Solution QuickCMS是Open Solution开源的一个内容管理系统。 Open Solution QuickCMS 6.8版本存在跨站脚本漏洞，该漏洞源于页面编辑器功能存在多个存储型跨站脚本，可能导致特权管理员注入任意HTML和JS代码。

Description (English)

Open solution QuickCMS is a content management system for Open Solution. Open solution QuickCMS version 6.8 has a cross-site script loophole, which stems from the multiple storage-type cross-site scripts available in the page editor function, which may result in a privileged administrator injecting any HTML and JS code.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

Open Solution

Published

2025-10-23

Last Modified

2026-02-24

References

https://cert.pl/posts/2025/10/CVE-2025-9980 https://opensolution.org/cms-system-quick-cms.html