XSS in Opensolution Quickcms

CVE-2025-54540

QuickCMS is vulnerable to Reflected XSS via sSort parameter in admin's panel functionality. A malicious attacker can craft a specially crafted URL that, when opened, results in arbitrary JavaScript execution in the victim's browser. The v…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.001 (22.8th percentile) — read the EPSS interpretation.