Vulnerabilities > Asustor > ADM > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-17 | CVE-2023-2509 | Cross-site Scripting vulnerability in Asustor Adm, Looksgood and Soundsgood A Cross-Site Scripting(XSS) vulnerability was found on ADM, LooksGood and SoundsGood Apps. | 6.1 |
| 2018-06-28 | CVE-2018-11510 | OS Command Injection vulnerability in Asustor ADM The ASUSTOR ADM 3.1.0.RFQ3 NAS portal suffers from an unauthenticated remote code execution vulnerability in the portal/apis/aggrecate_js.cgi file by embedding OS commands in the 'script' parameter. | 5.0 |