2 matches found
Qnap QTS Cross-site Scripting (CVE-2017-13072)
Cross-site scripting XSS vulnerability in App Center in QNAP QTS 4.2.6 build 20171208, QTS 4.3.3 build 20171213, QTS 4.3.4 build 20171223, and their earlier versions could allow remote attackers to inject Javascript code. This plugin only works with Tenable.ot. Please visit...
CVE-2017-13072
The CVE-2017-13072 entry describes a Cross-site scripting (XSS) vulnerability in QNAP QTS App Center affecting QTS 4.2.6 (build 20171208), 4.3.3 (build 20171213), 4.3.4 (build 20171223), and earlier versions. The underlying issue is an XSS flaw that could allow remote attackers to inject Javascri...