Cross-Site Scripting Vulnerability in QNAP Music Station
CVE-2018-19951
6.1MEDIUM
What is CVE-2018-19951?
QNAP Music Station is susceptible to a cross-site scripting vulnerability, enabling remote attackers to inject harmful scripts into web pages viewed by users. Exploiting this security flaw may permit unauthorized access and manipulation of user sessions, potentially leading to further compromise of user data. It is crucial for users of affected versions to apply necessary updates to mitigate risks associated with this vulnerability.
Affected Version(s)
Music Station < 5.1.13
Music Station < 5.2.9
Music Station < 5.3.11