OpenSolution QuickCMS Cross-Site Request Forgery Vulnerability in Article Creation

Vulnerability

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in OpenSolution QuickCMS version 6.8, specifically within the article creation feature. This vulnerability allows attackers to craft a website that, when visited by an admin, automatically sends a POST request to create a malicious article with content specified by the attacker.

Impact

Exploitation of this vulnerability allows for unauthorized article creation with attacker-defined content, potentially leading to the dissemination of malicious information or phishing attempts.

Added: Aug 20, 2025, 1:23 PM

Updated: Aug 20, 2025, 2:59 PM

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

0.6

exploitability

6.5

remediation

0.0

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

0.6

exploitability

6.5

remediation

0.0

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

OpenSolution QuickCMS Cross-Site Request Forgery Vulnerability in Article Creation

Vulnerability

Impact

Affected Products

OpenSolution Quick.CMS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating