CSRF in Opensolution Quick.cms
CVE-2025-54174
QuickCMS is vulnerable to Cross-Site Request Forgery in article creation functionality. Malicious attacker can craft special website, which when visited by the admin, will automatically send a POST request creating a malicious article with…
Vulnerability class: CSRF (Cross-Site Request Forgery)
EPSS: 0.000 (7.7th percentile) — read the EPSS interpretation.
Affected products
- Opensolution Quick.cms — versions 6.8
Weakness classification (CWE)
References
- cert.pl/en/posts/2025/08/CVE-2025-54172 (third-party-advisory)
- opensolution.org/cms-system-quick-cms.html (product)