Vulnerabilities > Qnap > NAS Proxy Server
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-26 | CVE-2021-34360 | Cross-Site Request Forgery (CSRF) vulnerability in Qnap NAS Proxy Server A cross-site request forgery (CSRF) vulnerability has been reported to affect QNAP device running Proxy Server. | 6.8 |
| 2022-02-25 | CVE-2021-34359 | Cross-site Scripting vulnerability in Qnap NAS Proxy Server 1.3.0 A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running Proxy Server. | 3.5 |
| 2022-02-25 | CVE-2021-34361 | Cross-site Scripting vulnerability in Qnap NAS Proxy Server 1.3.0 A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running Proxy Server. | 4.3 |
| 2018-06-05 | CVE-2017-7639 | Improper Authentication vulnerability in Qnap NAS Proxy Server QNAP NAS application Proxy Server through version 1.2.0 does not authenticate requests properly. | 5.0 |
| 2018-06-05 | CVE-2017-7637 | OS Command Injection vulnerability in Qnap NAS Proxy Server QNAP NAS application Proxy Server through version 1.2.0 allows remote attackers to run arbitrary OS commands against the system with root privileges. | 10.0 |
| 2018-06-05 | CVE-2017-7636 | Cross-site Scripting vulnerability in Qnap NAS Proxy Server Cross-site scripting (XSS) vulnerability in QNAP NAS application Proxy Server through version 1.2.0 allows remote attackers to inject arbitrary web script or HTML. | 4.3 |
| 2018-06-05 | CVE-2017-7635 | Cross-Site Request Forgery (CSRF) vulnerability in Qnap NAS Proxy Server QNAP NAS application Proxy Server through version 1.2.0 does not utilize CSRF protections. | 6.8 |