Cross-site scripting (XSS) vulnerabilities in Synology Audio Station 5.1 prior to 5.1-2550 and 5.4 prior to 5.4-2857 allows remote authenticated malicious users to inject arbitrary web script or HTML via the album title.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
synology audio station 5.4-2853 |
||
synology audio station 5.1-2542 |
||
synology audio station 5.1-2541 |
||
synology audio station 5.1-2547 |
||
synology audio station 5.1-2549 |
||
synology audio station 5.4-2855 |
||
synology audio station 5.4-2852 |
Vulmon