Opensolution: >> Quick.cart >> 5.0 Security Vulnerabilities
OpenSolution Quick.CMS < 6.7 and Quick.Cart < 6.7 allow an authenticated user to perform code injection (and consequently Remote Code Execution) via the input fields of the Language tab.
CVSS Score
7.2
EPSS Score
0.145
Published
2021-01-28
Open Solution Quick.Cart 5.0 allows remote attackers to obtain sensitive information via (1) a long string or (2) invalid characters in a cookie, which reveals the installation path in an error message.
CVSS Score
5.0
EPSS Score
0.003
Published
2012-11-27