QNAP QTS quick.cgi command execution

Added: 03/08/2024 Background QNAP is an operating system for Network Attached Storage NAS devices. QTS QNAP Turbo NAS System is the Turbo NAS Operating System for entry and mid-level QNAP NAS. Problem A vulnerability in the quick.cgi component in uninitialized QNAP NAS devices allows remote...

QNAP Systems Cross-Site Scripting Vulnerability in Multiple Products

Qnap Systems QNAP QTS is a Turbo NAS operating system from Qnap Systems. The system provides file storage, management, backup, multimedia applications and security monitoring. A cross-site scripting vulnerability exists in several QNAP Systems products, which can be exploited by an attacker to...

QNAP Systems QNAP QTS Incorrect Link Resolution Vulnerability

QNAP Systems QNAP QTS is a Turbo NAS operating system from QNAP Systems. The system provides file storage, management, backup, multimedia applications and security monitoring. A security vulnerability exists in QNAP Systems QNAP QTS, which is caused by the program not properly resolving links. A...

QNAP QTS Qsync Central Cross-Site Scripting Vulnerability

QNAP QTS is a Turbo NAS operating system from QNAP Systems that provides file storage, management, backup, multimedia applications and security monitoring. It provides file storage, management, backup, multimedia applications and security monitoring, etc. Qsync Central is one of the cloud-based...

QNAP QTS Buffer Overflow Vulnerability (CNVD-2019-08338)

QNAP QTS is a Turbo NAS operating system from QNAP Systems. The system provides file storage, management, backup, multimedia applications and security monitoring. A buffer overflow vulnerability exists in QNAP QTS, which can be exploited by attackers to execute arbitrary code or cause a denial of...

QNAP QTS Command Injection Vulnerability (CNVD-2018-26642)

QNAP QTS is a Turbo NAS operating system from QNAP Systems. The system provides file storage, management, backup, multimedia applications and security monitoring. A command injection vulnerability exists in QNAP QTS. A remote attacker can exploit this vulnerability to run arbitrary commands on th...

QNAP QTS Cross-Site Scripting Vulnerability (CNVD-2018-24263)

QNAP QTS is a Turbo NAS operating system from QNAP Systems. The system provides file storage, management, backup, multimedia applications and security monitoring. A cross-site scripting vulnerability exists in QNAP QTS version 4.2.6 build 20180711 and earlier, 4.3.3 build 20180725 and earlier, an...

QNAP QTS Music Station Command Injection Vulnerability

QNAP QTS is a Turbo NAS operating system from QNAP Systems that provides file storage, management, backup, multimedia applications and security monitoring. The system provides file storage, management, backup, multimedia applications and security monitoring, etc. Music Station is one of the audio...

QNAP QTS cross-site scripting vulnerability (CNVD-2018-08349)

QNAP QTS is a Turbo NAS operating system from QNAP Systems. The system provides file storage, management, backup, multimedia applications and security monitoring. A cross-site scripting vulnerability exists in File Station in QNAP QTS 4.2.6 build 20171026 and earlier and QTS 4.3.3 build 20170727...

QNAP QTS Buffer Overflow Vulnerability (CNVD-2017-37610)

QNAP QTS is a Turbo NAS operating system from QNAP Systems. The system provides file storage, management, backup, multimedia applications and security monitoring. A buffer overflow vulnerability exists in QNAP QTS. A remote attacker could exploit this vulnerability to execute arbitrary code on th...

QNAP QTS Buffer Overflow Vulnerability (CNVD-2017-37609)

QNAP QTS is a Turbo NAS operating system from QNAP Systems. The system provides file storage, management, backup, multimedia applications and security monitoring. A buffer overflow vulnerability exists in QNAP QTS. A remote attacker could exploit this vulnerability to execute arbitrary code on th...

QNAP QTS Buffer Overflow Vulnerability

QNAP QTS is a Turbo NAS operating system from QNAP Systems. The system provides file storage, management, backup, multimedia applications and security monitoring. A buffer overflow vulnerability exists in QNAP QTS. A remote attacker could exploit this vulnerability to execute arbitrary code on th...

QNAP Video Station Command Injection Vulnerability

QNAP QTS is a Turbo NAS operating system from QNAP Systems that provides file storage, management, backup, multimedia applications and security monitoring. The system provides file storage, management, backup, multimedia applications and security monitoring, etc. Video Station is one of the video...

QNAP QTS Arbitrary Command Execution Vulnerability (CNVD-2017-10393)

QNAP QTS is a Turbo NAS operating system from QNAP Systems. The system provides file storage, management, backup, multimedia applications and security monitoring. An arbitrary command execution vulnerability exists in QNAP QTS. An attacker could use this vulnerability to execute arbitrary command...

QNAP QTS Arbitrary Command Execution Vulnerability (CNVD-2017-10394)

QNAP QTS is a Turbo NAS operating system from QNAP Systems. The system provides file storage, management, backup, multimedia applications and security monitoring. An arbitrary command execution vulnerability exists in QNAP QTS. An attacker could use this vulnerability to execute arbitrary command...

QNAP QTS Command Injection Vulnerability

QNAP QTS is a Turbo NAS operating system from QNAP Systems. The system provides file storage, management, backup, multimedia applications and security monitoring. A command injection vulnerability exists in QNAP QTS version 4.2.x, which can be exploited to conduct a man-in-the-middle attack durin...

JVN#42930233: QNAP QTS vulnerable to cross-site scripting

QNAP QTS is an operating system for Turbo NAS. QNAP QTS contains a cross-site scripting vulnerability CWE-79. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Firmware Update to the latest version of firmware according to the information provided by the...

QNAP Systems QNAP QTS Directory Traversal Vulnerability

QNAP Systems QNAP QTS is a Turbo NAS operating system from QNAP Systems. A directory traversal vulnerability exists in QNAP Systems QNAP QTS. When AFP is enabled in the program, a remote attacker can read or write arbitrary files by submitting a special directory traversal request while accessing...

NAP Turbo NAS Series Devices CGI Arbitrary Code Execution Vulnerability

NAP Turbo NAS Series Devices is a backup software that supports real-time backup, data synchronization and scheduled backup. A security vulnerability in the NAP Turbo NAS Series Devices CGI allows remote attackers to exploit the vulnerability to submit a special request to execute arbitrary code...

NAP Turbo NAS Series Devices 'Edit Account Profile' Cross-Site Scripting Vulnerability

NAP Turbo NAS Series Devices is a backup software that supports real-time backup, data synchronization and scheduled backup. An input validation vulnerability exists in the "Edit Account Profile" page of NAP Turbo NAS Series Devices, which can be exploited by remote attackers to inject malicious...