CVE-2018-19955
CVE-2018-19955 is a cross-site scripting vulnerability in QNAP Photo Station. The issue arises from lack of proper validation of client data by the WEB application, enabling remote attackers to inject malicious code. Affected are Photo Station versions prior to 5.7.11 and prior to 6.0.10. Availab...