CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Synology: >> Note Station >> 2.4.3-0810 Security Vulnerabilities

CVE-2019-11827

Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Shard in Synology Note Station before 2.5.3-0863 allows remote attackers to inject arbitrary web script or HTML via the object_id parameter.

CVSS Score

6.5

EPSS Score

0.001

Published

2019-06-30

CVE-2018-8911

Cross-site scripting (XSS) vulnerability in Attachment Preview in Synology Note Station before 2.5.1-0844 allows remote authenticated users to inject arbitrary web script or HTML via malicious attachments.

CVSS Score

6.5

EPSS Score

0.001

Published

2018-05-09

CVE-2018-8912

Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Note in Synology Note Station before 2.5.1-0844 allows remote authenticated users to inject arbitrary web script or HTML via the commit_msg parameter.

CVSS Score

6.5

EPSS Score

0.001

Published

2018-05-09

Page 1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved