First published: Fri Jun 30 2017(Updated: )
Multiple cross-site scripting (XSS) vulnerabilities in Synology Note Station 1.1-0212 and earlier allow remote authenticated attackers to inject arbitrary web script or HTML via the (1) note title or (2) file name of attachments.
Credit: security@synology.com
Affected Software | Affected Version | How to fix |
---|---|---|
Synology Note Station | <=1.1-0212 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.