Unrated severityNVD Advisory· Published Jan 28, 2021· Updated Aug 4, 2024
CVE-2020-35754
CVE-2020-35754
Description
OpenSolution Quick.CMS < 6.7 and Quick.Cart < 6.7 allow an authenticated user to perform code injection (and consequently Remote Code Execution) via the input fields of the Language tab.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- OpenSolution/Quick.CMS and Quick.Cartdescription
- Range: <6.7
- Range: <6.7
Patches
Vulnerability mechanics
References
4- packetstormsecurity.com/files/161189/Quick.CMS-6.7-Remote-Code-Execution.htmlmitrex_refsource_MISC
- opensolution.org/cms-system-quick-cms.htmlmitrex_refsource_MISC
- opensolution.org/security-fix-for-cart-and-cms%21-en-1136.htmlmitrex_refsource_CONFIRM
- secator.pl/index.php/2021/01/28/cve-2020-35754-authenticated-rce-in-quick-cms-and-quick-cart/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.