Qqq Systems Project Security Vulnerabilities

CVE-2018-0536

Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via quiz.cgi.

CVE-2018-0537

Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via quiz_op.cgi.

CVE-2018-0538

Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via unspecified vectors.

CVE-2018-0539

QQQ SYSTEMS version 2.24 allows an attacker to execute arbitrary commands via unspecified vectors.