Unrated severityNVD Advisory· Published Dec 11, 2025· Updated Apr 7, 2026
Quick.CMS 6.7 SQL Injection Authentication Bypass via Admin Login
CVE-2024-58308
Description
Quick.CMS 6.7 contains a SQL injection vulnerability that allows unauthenticated attackers to bypass login authentication by manipulating the login form. Attackers can inject specific SQL payloads like ' or '1'='1 to gain unauthorized administrative access to the system.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2= 6.7+ 1 more
- (no CPE)range: = 6.7
- (no CPE)range: 6.7
Patches
Vulnerability mechanics
References
4- www.exploit-db.com/exploits/51910mitreexploit
- www.vulncheck.com/advisories/quickcms-sql-injection-authentication-bypass-via-admin-loginmitrethird-party-advisory
- opensolution.org/download/home.htmlmitreproduct
- www.opensolution.orgmitreproduct
News mentions
0No linked articles in our index yet.