CVE-2017-7634

CVE-2017-7634 is a cross-site scripting (XSS) vulnerability in the QNAP NAS application Media Streaming add-on (versions 421.1.0.2, 430.1.2.0, and earlier). The issue allows remote attackers to inject arbitrary web script or HTML when a user clicks a crafted link; the injected code is triggered o...