This cross-site scripting vulnerability in Music Station allows remote attackers to inject malicious code. QANP have already fixed this vulnerability in the following versions of Music Station. QuTS hero h4.5.1: Music Station 5.3.13 and later QTS 4.5.1: Music Station 5.3.12 and later QTS 4.4.3: Music Station 5.3.12 and later
[
{
"product": "Music Station",
"vendor": "QNAP Systems Inc.",
"versions": [
{
"status": "affected",
"version": "< 5.3.13"
},
{
"status": "affected",
"version": "< 5.3.12"
}
]
}
]