CVE-2026-33386 | OpenSolution QuickCMS up to 6.8 Plugin List Endpoint cross site scripting

Inserito da Angelo Barbosa | Mag 29, 2026 | CVE

A vulnerability labeled as problematic has been found in OpenSolution QuickCMS up to 6.8. The impacted element is an unknown function of the component Plugin List Endpoint. Such manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2026-33386. The attack can be executed remotely. There is not any exploit available.

It is best practice to apply a patch to resolve this issue.

CVE-2026-33386 | OpenSolution QuickCMS up to 6.8 Plugin List Endpoint cross site scripting

Post correlati

CVE-2024-5212 | tagDiv Composer Plugin up to 5.0 on WordPress envato_code[] cross site scripting

CVE-2024-10574 | AYS Pro Plugins Quiz Maker Business, Developer, and Agency Plugin up to 21.8.0 on WordPress Setting ays_save_google_credentials client_id authorization

CVE-2024-8327 | Hwa Jiuh Digital Technology Easy Test Online Learning and Testing Platform prior 24A01 page sql injection

CVE-2025-13543 | PostGallery Plugin up to 1.12.5 on WordPress PostGalleryUploader unrestricted upload