CVE-2018-0537
CVE-2018-0537 describes a cross-site scripting (CWE-79) vulnerability in QQQ SYSTEMS ver2.24. The flaw resides in the quiz_op.cgi CGI script, allowing an attacker-controlled script or HTML to be injected and executed in a victim’s browser when visiting a page that uses the product. Reported impac...