5 matches found
Synology Drive File Sharing Notify Toast Cross-Site Scripting Vulnerability
Synology Drive is a collaboration suite from Synology that includes document management, collaboration and file synchronization and backup features.File Sharing Notify Toast is one of the file sharing components. A cross-site scripting vulnerability exists in File Sharing Notify Toast in Synology...
Synology Drive Access Control Error Vulnerability
Synology Drive is a collaboration suite from Synology that includes document management, collaboration and file synchronization and backup. An access control error vulnerability exists in Synology Drive versions prior to 1.0.2-10275. A remote attacker can exploit the vulnerability to access...
CVE-2018-8921
Cross-site scripting XSS vulnerability in File Sharing Notify Toast in Synology Drive before 1.0.2-10275 allows remote authenticated users to inject arbitrary web script or HTML via the malicious file name...
CVE-2018-8922
Improper access control vulnerability in Synology Drive before 1.0.2-10275 allows remote authenticated users to access non-shared files or folders via unspecified vectors...
PT-2018-18719 · Synology · Synology Drive
Name of the Vulnerable Software and Affected Versions: Synology Drive versions prior to 1.0.2-10275 Description: The issue allows remote authenticated users to inject arbitrary web script or HTML via a malicious file name, exploiting a cross-site scripting XSS vulnerability in the File Sharing...