CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

QQQ SYSTEMS is a set of CGI scripts for creating quiz pages. A cross-site scripting vulnerability exists in QQQ SYSTEMS version 2.24. A remote attacker can exploit this vulnerability to inject arbitrary web scripts...

6.1CVSS6.2AI score0.00746EPSS

Exploits0References1

CNVD•added 2018/03/28 12:0 a.m.•2 views

QQQ SYSTEMS cross-site scripting vulnerability (CNVD-2018-07698)

6.1CVSS6.2AI score0.00746EPSS

Exploits0References1

CNVD•added 2018/03/28 12:0 a.m.•2 views

QQQ SYSTEMS OS Command Injection Vulnerability

QQQ SYSTEMS is a set of CGI scripts for creating quiz pages. A security vulnerability exists in QQQ SYSTEMS version 2.24. An attacker can exploit this vulnerability to execute arbitrary commands...

10CVSS7.3AI score0.02703EPSS

Exploits0References1

OSV•added 2018/03/22 1:29 p.m.•1 views

CVE-2018-0538

Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS5.9AI score0.00746EPSS

Exploits0References1

Prion•added 2018/03/22 1:29 p.m.•10 views

Cross site scripting

Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via quiz.cgi...

4.3CVSS6AI score0.00746EPSS

Exploits0References1Affected Software1

Prion•added 2018/03/22 1:29 p.m.•13 views

Cross site scripting

Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via quizop.cgi...

4.3CVSS6AI score0.00746EPSS

Exploits0References1Affected Software1

NVD•added 2018/03/22 1:29 p.m.•16 views

CVE-2018-0536

Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via quiz.cgi...

6.1CVSS6.1AI score0.00746EPSS

Exploits0References1

NVD•added 2018/03/22 1:29 p.m.•14 views

CVE-2018-0538

Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS6AI score0.00746EPSS

Exploits0References1

CVE•added 2018/03/22 1:0 p.m.•41 views

CVE-2018-0538

The CVE-2018-0538 entry concerns QQQ SYSTEMS ver2.24, a CGI-based quiz-system that contains a stored cross-site scripting vulnerability (CWE-79). Affected component is the web UI handling administrative/arbitrary input that can be crafted to execute arbitrary scripts in the victim’s browser, enab...

6.1CVSS5.9AI score0.00746EPSS

Exploits0References1Affected Software1

CVE•added 2018/03/22 1:0 p.m.•43 views

CVE-2018-0537

CVE-2018-0537 describes a cross-site scripting (CWE-79) vulnerability in QQQ SYSTEMS ver2.24. The flaw resides in the quiz_op.cgi CGI script, allowing an attacker-controlled script or HTML to be injected and executed in a victim’s browser when visiting a page that uses the product. Reported impac...

6.1CVSS6AI score0.00746EPSS

Exploits0References1Affected Software1

Cvelist•added 2018/03/22 1:0 p.m.•15 views

CVE-2018-0537

Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via quizop.cgi...

6.1AI score0.00746EPSS

Exploits0References1

Cvelist•added 2018/03/22 1:0 p.m.•16 views

CVE-2018-0538

Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via unspecified vectors...

6AI score0.00746EPSS

Exploits0References1

CVE•added 2018/03/22 1:0 p.m.•48 views

CVE-2018-0536

QQQ SYSTEMS (ver2.24) exposes a cross-site scripting vulnerability in quiz.cgi (CWE-79). The CGI-based quiz page creator allows an attacker to inject arbitrary web scripts via quiz.cgi, potentially affecting users who load malicious pages. Reported in multiple sources (CNVD/NVD/JVN) with impact d...

6.1CVSS6AI score0.00746EPSS

Exploits0References1Affected Software1

Cvelist•added 2018/03/22 1:0 p.m.•19 views

CVE-2018-0536

Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via quiz.cgi...

6.1AI score0.00746EPSS

Exploits0References1

CVE•added 2018/03/22 1:0 p.m.•46 views

CVE-2018-0539

The CVE-2018-0539 entry concerns QQQ SYSTEMS version 2.24, a Perl CGI-based quiz tool, which contains an OS command injection vulnerability (CWE-78). Connected sources confirm that an attacker can execute arbitrary commands on the server with the web server’s privileges, due to the vulnerable com...

10CVSS9.6AI score0.02703EPSS

Exploits0References1Affected Software1

Japan Vulnerability Notes•added 2018/03/13 7:43 a.m.•2 views

QQQ SYSTEMS vulnerable to cross-site scripting

Overview QQQ SYSTEMS provided by Gundam Cult QQQ is a CGI script to create quiz pages. QQQ SYSTEMS contains a stored cross-site scripting vulnerability CWE-79. When an administrative user of the software accesses a malicious page created by an attacker, an arbitrary script may be executed. Note...

8.2CVSS5.8AI score0.00746EPSS

Exploits0References4

Japan Vulnerability Notes•added 2018/03/13 7:43 a.m.•2 views

QQQ SYSTEMS vulnerable to cross-site scripting

Overview QQQ SYSTEMS provided by Gundam Cult QQQ is a CGI script to create quiz pages. quizop.cgi of QQQ SYSTEMS contains a cross-site scripting vulnerability CWE-79. When a user accesses a malicious page and is redirected to a page created with the product, an arbitrary script may be executed on...

6.1CVSS5.9AI score0.00746EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by