CVE-2018-19954
CVE-2018-19954 is a cross-site scripting vulnerability in QNAP Systems Inc. Photo Station. Affected versions are Photo Station prior to 5.7.11 and prior to 6.0.10. The issue stems from insufficient input validation in the Web application, enabling remote attackers to inject malicious code if expl...