MidnightBSD

Advisories for qcms

CVE-2018-8069 LOW

QCMS version 3.0 has XSS via the webname parameter to the /backend/system.html URI.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
qcms qcms 3.0
CVE-2018-8070 LOW

QCMS version 3.0 has XSS via the title parameter to the /guest/index.html URI.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
qcms qcms 3.0