CNNVD-202512-2048 Information

Dec 11, 2025 cve

CNNVD ID

CNNVD-202512-2048

CVE-2024-58308

CNNVD Published: 2025-12-11

Description (Chinese)

Opensolution Quick.Cms是波兰Opensolution公司的一款用于构建文本管理平台的建站系统。 Opensolution Quick.Cms 6.7版本存在SQL注入漏洞，该漏洞源于登录表单存在SQL注入，可能导致未经授权的管理员访问。

Description (English)

Opensolution Quick.Cms is a building system for the construction of a text management platform by the Polish company Opensolution. Version 6.7 of Opensolution Quick.Cms contains an injection loophole in SQL, which stems from the presence of SQL in the login form and may lead to unauthorized access by administrators.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

OpenSolution

Published

2025-12-11

Last Modified

2026-02-24

References

https://www.vulncheck.com/advisories/quickcms-sql-injection-authentication-bypass-via-admin-login https://www.exploit-db.com/exploits/51910 https://www.opensolution.org https://opensolution.org/download/home.html?sFile=Quick.Cms_v6.7-en.zip https://access.redhat.com/security/cve/cve-2024-58308

Share on: