CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

CNVD•added 2018/03/28 12:0 a.m.•3 views

QQQ SYSTEMS cross-site scripting vulnerability (CNVD-2018-07697)

QQQ SYSTEMS is a set of CGI scripts for creating quiz pages. A cross-site scripting vulnerability exists in QQQ SYSTEMS version 2.24. A remote attacker can exploit this vulnerability to inject arbitrary web scripts via the quizop.cgi file...

6.1CVSS6.2AI score0.00746EPSS

Exploits0References1

NVD•added 2018/03/22 1:29 p.m.•14 views

CVE-2018-0537

Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via quizop.cgi...

6.1CVSS6.1AI score0.00746EPSS

Exploits0References1

Prion•added 2018/03/22 1:29 p.m.•13 views

Cross site scripting

Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via quizop.cgi...

4.3CVSS6AI score0.00746EPSS

Exploits0References1Affected Software1

CVE•added 2018/03/22 1:0 p.m.•44 views

CVE-2018-0537

CVE-2018-0537 describes a cross-site scripting (CWE-79) vulnerability in QQQ SYSTEMS ver2.24. The flaw resides in the quiz_op.cgi CGI script, allowing an attacker-controlled script or HTML to be injected and executed in a victim’s browser when visiting a page that uses the product. Reported impac...

6.1CVSS6AI score0.00746EPSS

Exploits0References1Affected Software1