Medium severity6.1NVD Advisory· Published Aug 6, 2018· Updated Jun 17, 2026
CVE-2018-14977
CVE-2018-14977
Description
An issue was discovered in QCMS 3.0.1. upload/System/Controller/guest.php has XSS, as demonstrated by the name parameter, a different vulnerability than CVE-2018-8070.
Affected products
1Patches
Vulnerability mechanics
References
1- github.com/AvaterXXX/QCMS/blob/master/XSS.mdnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.