JVN#46471407: QQQ SYSTEMS vulnerable to cross-site scripting

QQQ SYSTEMS provided by Gundam Cult QQQ is a CGI script to create quiz pages. QQQ SYSTEMS contains a stored cross-site scripting vulnerability (CWE-79).
When an administrative user of the software accesses a malicious page created by an attacker, an arbitrary script may be executed.

Impact

Due to this vulnerability, a victim being tricked into accessing a malicious link may have the web display altered or Cookie information in the victim’s browser may be leaked.

Solution

Consider stop using QQQ SYSTEMS ver2.24
Since the developer was unreachable, existence of any mitigations are unknown.