Vulnerabilities > Asustor > ADM > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-05-17 CVE-2023-2509 Cross-site Scripting vulnerability in Asustor Adm, Looksgood and Soundsgood
A Cross-Site Scripting(XSS) vulnerability was found on ADM, LooksGood and SoundsGood Apps.
network
low complexity
asustor CWE-79
6.1
2018-06-28 CVE-2018-11510 OS Command Injection vulnerability in Asustor ADM
The ASUSTOR ADM 3.1.0.RFQ3 NAS portal suffers from an unauthenticated remote code execution vulnerability in the portal/apis/aggrecate_js.cgi file by embedding OS commands in the 'script' parameter.
network
low complexity
asustor CWE-78
5.0