2 matches found
CVE-2021-34359 Stored XSS Vulnerability in Proxy Server
A cross-site scripting XSS vulnerability has been reported to affect QNAP device running Proxy Server. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of Proxy Server: QTS 4.5.x: Proxy Server 1.4...
CVE-2021-34359
The CVE-2021-34359 issue is a cross-site scripting (XSS) vulnerability in QNAP QTS Proxy Server. Affected product: Proxy Server on QTS 4.5.x. Root cause: insufficient handling of user-supplied data allowing injection of HTML/Script. Impact: remote attacker could inject malicious code when a user ...