2 matches found
Terramaster TOS Cross Site Scripting (CVE-2018-13334; CVE-2018-13335; CVE-2018-13357)
A cross site scripting exists in Terramaster TOS. Successful exploitation of this vulnerability would allow remote attackers to inject an arbitrary web script into the affected system...
CVE-2018-13357
CVE-2018-13357 is an XSS in TerraMaster TOS 3.1.03. The vulnerability lies in the Control Panel where JavaScript can be executed when viewing Shared Folders, via the names of Shared Folders. Affected product/component: TerraMaster TOS Control Panel / Shared Folders naming. Impact: attacker can in...