OpenSolution QuickCMS Password Exposure Vulnerability via GET Request

Vulnerability

A vulnerability in OpenSolution QuickCMS version 6.8 allows for the exposure of login credentials, including passwords, through GET requests. This issue can be exploited by a local attacker with access to the victim's browser history, enabling them to retrieve the credentials needed to log in as the user.

Impact

Successful exploitation of this vulnerability allows for unauthorized access to user accounts by exposing login credentials through browser history.

Added: Aug 28, 2025, 12:48 PM

Updated: Aug 28, 2025, 12:48 PM

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

5.0

exploitability

5.2

remediation

0.0

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

5.0

exploitability

5.2

remediation

0.0

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

OpenSolution QuickCMS Password Exposure Vulnerability via GET Request

Vulnerability

Impact

Affected Products

OpenSolution QuickCMS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating