CNNVD-202601-3835 Information

CNNVD ID

CNNVD-202601-3835

Related CVE

CVE-2025-67683

• CNNVD Published: 2026-01-22

Description (Chinese)

OpenSolution Quick.Cart是波兰OpenSolution公司的一个网上商店系统。 OpenSolution Quick.Cart存在跨站脚本漏洞，该漏洞源于sSort参数容易受到反射型跨站脚本攻击，可能导致在受害者浏览器中执行任意JavaScript代码。

Description (English)

OpenSolution Quick.Cart is an online shop system for Polish OpenSolution. OpenSolution Quick.Cart has a cross-site script loophole, which stems from the fact that sSort parameters are vulnerable to reflective cross-script attacks and may lead to the implementation of any JavaScript code in the victim browser.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

OpenSolution

Published

2026-01-22

Last Modified

2026-02-24

References

https://cert.pl/posts/2026/01/CVE-2025-67683 https://opensolution.org/sklep-internetowy-quick-cart.html