Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Shard in Synology Note Station before 2.5.3-0863 allows remote attackers to inject arbitrary web script or HTML via the object_id parameter.
CPE | Name | Operator | Version |
---|---|---|---|
note_station | eq | < 2.5.3-863 |