Vulnerabilities > Qnap
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-12-24 | CVE-2020-2504 | Path Traversal vulnerability in Qnap QES If exploited, this absolute path traversal vulnerability could allow attackers to traverse files in File Station. | 7.5 |
2020-12-24 | CVE-2020-2503 | Cross-site Scripting vulnerability in Qnap QES If exploited, this stored cross-site scripting vulnerability could allow remote attackers to inject malicious code in File Station. | 5.4 |
2020-12-24 | CVE-2020-2499 | Use of Hard-coded Credentials vulnerability in Qnap QES A hard-coded password vulnerability has been reported to affect earlier versions of QES. | 7.2 |
2020-12-10 | CVE-2020-2498 | Cross-site Scripting vulnerability in Qnap QTS and Quts Hero If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in certificate configuration. | 6.1 |
2020-12-10 | CVE-2020-2497 | Cross-site Scripting vulnerability in Qnap QTS and Quts Hero If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in System Connection Logs. | 6.1 |
2020-12-10 | CVE-2020-2496 | Cross-site Scripting vulnerability in Qnap QTS and Quts Hero If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in File Station. | 6.1 |
2020-12-10 | CVE-2020-2495 | Cross-site Scripting vulnerability in Qnap QTS and Quts Hero If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in File Station. | 6.1 |
2020-12-10 | CVE-2020-2494 | Cross-site Scripting vulnerability in Qnap Music Station This cross-site scripting vulnerability in Music Station allows remote attackers to inject malicious code. | 6.1 |
2020-12-10 | CVE-2020-2493 | Cross-site Scripting vulnerability in Qnap Multimedia Console This cross-site scripting vulnerability in Multimedia Console allows remote attackers to inject malicious code. | 6.1 |
2020-12-10 | CVE-2020-2491 | Cross-site Scripting vulnerability in Qnap Photo Station This cross-site scripting vulnerability in Photo Station allows remote attackers to inject malicious code. | 6.1 |