3 matches found
CVE-2017-9556
Cross-site scripting XSS vulnerability in Video Metadata Editor in Synology Video Station before 2.3.0-1435 allows remote authenticated attackers to inject arbitrary web script or HTML via the title parameter...
CVE-2017-9556
Synology Video Station’s Video Metadata Editor is affected by CVE-2017-9556. Vulnerable are versions before 2.3.0-1435, where an attacker with authenticated access can inject arbitrary script via the title parameter (XSS). The issue is documented across CVE/NVD and CNVD entries, with no exploitat...
CVE-2017-9556
Cross-site scripting XSS vulnerability in Video Metadata Editor in Synology Video Station before 2.3.0-1435 allows remote authenticated attackers to inject arbitrary web script or HTML via the title parameter...