XSS in Opensolution Quick.cms

CVE-2025-54172

QuickCMS is vulnerable to Stored XSS in sTitle parameter in page editor functionality. Malicious attacker with admin privileges can inject arbitrary HTML and JS into website, which will be rendered/executed when visiting edited page. Regul…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.000 (14.1th percentile) — read the EPSS interpretation.