2 matches found
CVE-2019-11828
Cross-site scripting XSS vulnerability in Chart in Synology Office before 3.1.4-2771 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...
CVE-2019-11828
Synology Office’s Chart component is affected by a Cross‑Site Scripting (XSS) vulnerability in versions prior to 3.1.4-2771. The issue arises from insufficient client data validation, enabling remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. Impact is web...