Browse all 21 CVE security advisories affecting OpenSolution. AI-powered Chinese analysis, POCs, and references for each vulnerability.
OpenSolution operates as a software development and IT consulting firm, primarily providing custom enterprise solutions and digital transformation services. Its technical portfolio includes web applications and API integrations, which have historically exposed the organization to common vulnerability classes such as Remote Code Execution (RCE), Cross-Site Scripting (XSS), and broken access control. With twenty-one CVEs currently on record, these flaws often stem from insufficient input validation and improper authentication mechanisms within deployed client systems. While OpenSolution itself is not a consumer product, its development practices have led to security incidents affecting downstream users, particularly regarding privilege escalation and data exposure. The company has faced scrutiny over its patch management timelines, though no major public breaches directly attributable to OpenSolution’s internal infrastructure have been widely documented. Security audits suggest a need for stricter code review processes to mitigate these recurring risks in future deployments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-58308 | Quick.CMS 6.7 SQL Injection Authentication Bypass via Admin Login — Quick.CMSCWE-89 | 9.8AI | CriticalAI | 2025-12-11 |
| CVE-2025-54174 | Cross-Site Request Forgery in QuickCMS — Quick.CMSCWE-352 | 6.5AI | MediumAI | 2025-08-20 |
| CVE-2025-54172 | Stored Cross-Site Scripting in QuickCMS — Quick.CMSCWE-79 | 4.8AI | MediumAI | 2025-08-20 |
This page lists every published CVE security advisory associated with OpenSolution. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.