Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

OpenSolution — Vulnerabilities & Security Advisories 21

Browse all 21 CVE security advisories affecting OpenSolution. AI-powered Chinese analysis, POCs, and references for each vulnerability.

OpenSolution operates as a software development and IT consulting firm, primarily providing custom enterprise solutions and digital transformation services. Its technical portfolio includes web applications and API integrations, which have historically exposed the organization to common vulnerability classes such as Remote Code Execution (RCE), Cross-Site Scripting (XSS), and broken access control. With twenty-one CVEs currently on record, these flaws often stem from insufficient input validation and improper authentication mechanisms within deployed client systems. While OpenSolution itself is not a consumer product, its development practices have led to security incidents affecting downstream users, particularly regarding privilege escalation and data exposure. The company has faced scrutiny over its patch management timelines, though no major public breaches directly attributable to OpenSolution’s internal infrastructure have been widely documented. Security audits suggest a need for stricter code review processes to mitigate these recurring risks in future deployments.

Top products by OpenSolution: QuickCMS Quick.Cart Quick.CMS Quick.CMS.EXT
CVE IDTitleCVSSSeverityPublished
CVE-2026-1468 Cross-Site Request Forgery in QuickCMS — QuickCMSCWE-352 8.8 -2026-03-06
CVE-2026-23796 Session Fixation in Quick.Cart — Quick.CartCWE-384 8.1AIHighAI2026-02-05
CVE-2026-23797 Plaintext password display in Quick.Cart — Quick.CartCWE-256 4.9AIMediumAI2026-02-05
CVE-2025-67684 Remote Code Execution via Local File Inclusion in Quick.Cart — Quick.CartCWE-22 7.2AIHighAI2026-01-22
CVE-2025-67683 Reflected XSS in Quick.Cart — Quick.CartCWE-79 6.1AIMediumAI2026-01-22
CVE-2024-58308 Quick.CMS 6.7 SQL Injection Authentication Bypass via Admin Login — Quick.CMSCWE-89 9.8AICriticalAI2025-12-11
CVE-2025-12465 Blind SQL Injection in QuickCMS — QuickCMSCWE-89 7.2AIHighAI2025-12-02
CVE-2025-10018 Multiple Stored XSS in QuickCMS — QuickCMSCWE-79 4.8 -2025-11-14
CVE-2025-9982 Hard-coded admin credentials in Quick.CMS — QuickCMSCWE-256 8.8 -2025-11-14
CVE-2025-10317 Multiple Cross-Site Request Forgery in Quick.Cart — Quick.CartCWE-352 6.5AIMediumAI2025-10-30
CVE-2025-9981 Multiple Stored XSS in QuickCMS — QuickCMSCWE-79 4.8AIMediumAI2025-10-23
CVE-2025-9980 Multiple Stored XSS in QuickCMS — QuickCMSCWE-79 4.8AIMediumAI2025-10-23
CVE-2025-55175 Reflected XSS in QuickCMS — QuickCMSCWE-79 4.8AIMediumAI2025-08-28
CVE-2025-54544 Stored XSS in QuickCMS — QuickCMSCWE-79 4.8AIMediumAI2025-08-28
CVE-2025-54543 Stored XSS in QuickCMS — QuickCMSCWE-79 4.8AIMediumAI2025-08-28
CVE-2025-54542 Sending Password in GET Request — QuickCMSCWE-598 7.8AIHighAI2025-08-28
CVE-2025-54541 Cross-Site Request Forgery in QuickCMS — QuickCMSCWE-352 4.3AIMediumAI2025-08-28
CVE-2025-54540 Reflected XSS in QuickCMS — QuickCMSCWE-79 4.8AIMediumAI2025-08-28
CVE-2025-54175 Reflected Cross-Site Scripting in QuickCMS.EXT — Quick.CMS.EXTCWE-79 6.1AIMediumAI2025-08-20
CVE-2025-54174 Cross-Site Request Forgery in QuickCMS — Quick.CMSCWE-352 6.5AIMediumAI2025-08-20
CVE-2025-54172 Stored Cross-Site Scripting in QuickCMS — Quick.CMSCWE-79 4.8AIMediumAI2025-08-20

This page lists every published CVE security advisory associated with OpenSolution. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.