Lucene search
K

9 matches found

ATTACKERKB
ATTACKERKB
added 2022/09/08 12:0 a.m.63 views

CVE-2022-27593

An externally controlled reference to a resource vulnerability has been reported to affect QNAP NAS running Photo Station. If exploited, This could allow an attacker to modify system files. We have already fixed the vulnerability in the following versions: QTS 5.0.1: Photo Station 6.1.2 and later...

10CVSS9.8AI score0.87908EPSS
In wildExploits0References2
NVD
NVD
added 2022/05/26 2:15 p.m.10 views

CVE-2021-34360

A cross-site request forgery CSRF vulnerability has been reported to affect QNAP device running Proxy Server. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of Proxy Server: QTS 4.5.x: Proxy...

8.8CVSS0.00437EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/05/26 7:20 a.m.16 views

CVE-2021-34360 CSRF Bypass in Proxy Server

A cross-site request forgery CSRF vulnerability has been reported to affect QNAP device running Proxy Server. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of Proxy Server: QTS 4.5.x: Proxy...

5.3CVSS8.9AI score0.00437EPSS
Exploits0References1
NVD
NVD
added 2022/02/25 6:15 a.m.16 views

CVE-2021-34359

A cross-site scripting XSS vulnerability has been reported to affect QNAP device running Proxy Server. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of Proxy Server: QTS 4.5.x: Proxy Server 1.4...

6.9CVSS0.00613EPSS
Exploits0References1
Prion
Prion
added 2022/02/25 6:15 a.m.18 views

Cross site scripting

A cross-site scripting XSS vulnerability has been reported to affect QNAP device running Proxy Server. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of Proxy Server: QTS 4.5.x: Proxy Server 1.4...

3.5CVSS5.3AI score0.00613EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/02/25 6:10 a.m.11 views

CVE-2021-34361 Reflected XSS Vulnerability in Proxy Server

A cross-site scripting XSS vulnerability has been reported to affect QNAP device running Proxy Server. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of Proxy Server: QTS 4.5.x: Proxy Server 1.4...

5.3CVSS6.2AI score0.00678EPSS
Exploits0References1
CVE
CVE
added 2022/02/25 6:10 a.m.91 views

CVE-2021-34361

CVE-2021-34361 is an XSS flaw in QNAP QTS Proxy Server. The vulnerability allows a remote attacker to inject HTML/script via crafted input in the Proxy Server component (affected by user-supplied data handling). According to the sources, the issue was fixed in QTS 4.5.x with Proxy Server 1.4.2 (2...

6.1CVSS5.6AI score0.00678EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/02/25 6:10 a.m.21 views

CVE-2021-34359 Stored XSS Vulnerability in Proxy Server

A cross-site scripting XSS vulnerability has been reported to affect QNAP device running Proxy Server. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of Proxy Server: QTS 4.5.x: Proxy Server 1.4...

6.9CVSS6.4AI score0.00613EPSS
Exploits0References1
CVE
CVE
added 2022/02/25 6:10 a.m.81 views

CVE-2021-34359

The CVE-2021-34359 issue is a cross-site scripting (XSS) vulnerability in QNAP QTS Proxy Server. Affected product: Proxy Server on QTS 4.5.x. Root cause: insufficient handling of user-supplied data allowing injection of HTML/Script. Impact: remote attacker could inject malicious code when a user ...

6.9CVSS5.4AI score0.00613EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder