2 matches found
CVE-2021-34360 CSRF Bypass in Proxy Server
A cross-site request forgery CSRF vulnerability has been reported to affect QNAP device running Proxy Server. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of Proxy Server: QTS 4.5.x: Proxy...
CVE-2021-34360
The CVE-2021-34360 entry concerns a CSRF vulnerability in QNAP Proxy Server used in QTS 4.5.x (Proxy Server 1.4.2+), QuTS hero h5.0.0 (Proxy Server 1.4.3+), and QuTScloud c4.5.x (Proxy Server 1.4.2+). The issue allows remote attackers to inject malicious code via cross-site request forgery. The f...