Vulnerabilities > Qnap > Music Station

DATE CVE VULNERABILITY TITLE RISK
2024-09-06 CVE-2023-45038 Improper Authentication vulnerability in Qnap Music Station
An improper authentication vulnerability has been reported to affect Music Station.
network
low complexity
qnap CWE-287
8.8
2023-11-03 CVE-2023-39299 Unspecified vulnerability in Qnap Music Station
A path traversal vulnerability has been reported to affect Music Station.
network
low complexity
qnap
7.5
2023-10-06 CVE-2023-23365 Path Traversal vulnerability in Qnap Music Station
A path traversal vulnerability has been reported to affect Music Station.
network
low complexity
qnap CWE-22
6.5
2023-10-06 CVE-2023-23366 Path Traversal vulnerability in Qnap Music Station
A path traversal vulnerability has been reported to affect Music Station.
network
low complexity
qnap CWE-22
6.5
2021-05-13 CVE-2020-36197 Unspecified vulnerability in Qnap Music Station
An improper access control vulnerability has been reported to affect earlier versions of Music Station.
low complexity
qnap
8.8
2020-12-10 CVE-2020-2494 Cross-site Scripting vulnerability in Qnap Music Station
This cross-site scripting vulnerability in Music Station allows remote attackers to inject malicious code.
network
low complexity
qnap CWE-79
6.1
2020-11-02 CVE-2018-19952 SQL Injection vulnerability in Qnap Music Station
If exploited, this SQL injection vulnerability could allow remote attackers to obtain application information.
network
low complexity
qnap CWE-89
7.5
2020-11-02 CVE-2018-19951 Cross-site Scripting vulnerability in Qnap Music Station
If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code.
network
low complexity
qnap CWE-79
6.1
2020-11-02 CVE-2018-19950 Command Injection vulnerability in Qnap Music Station
If exploited, this command injection vulnerability could allow remote attackers to execute arbitrary commands.
network
low complexity
qnap CWE-77
critical
9.8
2019-12-05 CVE-2019-7185 Cross-site Scripting vulnerability in Qnap Music Station
This cross-site scripting (XSS) vulnerability in Music Station allows remote attackers to inject and execute scripts on the administrator’s management console.
network
low complexity
qnap CWE-79
4.8