CVE-2018-8918
Synology Router Manager (SRM) is affected by a cross-site scripting (XSS) vulnerability in the info.cgi endpoint. The issue allows remote attackers to inject arbitrary web script or HTML via the host parameter in SRM versions prior to 1.1.7-6941. The root cause is an XSS flaw in how the host para...