QwikSec

Security Database

CVE

CWE

Training

CVE-2024-58308

Published: Dec 11, 2025

Modified: Apr 7, 2026

PUBLISHED

Description

Quick.CMS 6.7 contains a SQL injection vulnerability that allows unauthenticated attackers to bypass login authentication by manipulating the login form. Attackers can inject specific SQL payloads like ' or '1'='1 to gain unauthorized administrative access to the system.

Vendor	Product	Versions
opensolution	Quick.CMS	affected `6.7`

Weaknesses (CWE)

References

ExploitDB-51910

exploit

Official Product Homepage

product

product

VulnCheck Advisory: Quick.CMS 6.7 SQL Injection Authentication Bypass via Admin Login

third-party-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.