Cross-site scripting (XSS) vulnerability in QNAP NAS application Media Streaming add-on version 421.1.0.2, 430.1.2.0, and previous versions allows remote malicious users to inject arbitrary web script or HTML. The injected code will only be triggered by a crafted link, not the normal page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
qnap media_streaming_add-on |