CVE-2020-35754

HIGH

OpenSolution Quick.CMS and Quick.Cart < 6.7 - Authenticated Remote Code Execution via Language Tab Input

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-35754. PoCs published by mari0x00.

AI-analyzed exploit summary This exploit leverages an authenticated RCE vulnerability in Quick.CMS 6.7 by injecting a reverse shell payload into the 'Back_end_only' parameter via the language settings page. The payload is triggered by accessing the languages admin page, resulting in a reverse shell connection to the attacker's specified IP and port.

Description

OpenSolution Quick.CMS < 6.7 and Quick.Cart < 6.7 allow an authenticated user to perform code injection (and consequently Remote Code Execution) via the input fields of the Language tab.

Exploits (1)

exploitdb WORKING POC

by mari0x00 · pythonwebappsphp

https://www.exploit-db.com/exploits/49494

View Code ZIP pw:eip

This exploit leverages an authenticated RCE vulnerability in Quick.CMS 6.7 by injecting a reverse shell payload into the 'Back_end_only' parameter via the language settings page. The payload is triggered by accessing the languages admin page, resulting in a reverse shell connection to the attacker's specified IP and port.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Quick.CMS <= 6.7

Auth required

Prerequisites: Valid credentials for Quick.CMS admin panel · Network connectivity to the target · Listener set up on attacker's machine for reverse shell

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →