Vulnerabilities > Qnap > Qmailagent > 1.5.0

DATE CVE VULNERABILITY TITLE RISK
2021-11-20 CVE-2021-34358 Cross-Site Request Forgery (CSRF) vulnerability in Qnap Qmailagent
We have already fixed this vulnerability in the following versions of QmailAgent: QmailAgent 3.0.2 ( 2021/08/25 ) and later
network
qnap CWE-352
6.8
6.8
2021-11-13 CVE-2021-34357 Cross-site Scripting vulnerability in Qnap Qmailagent
A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running QmailAgent.
network
qnap CWE-79
4.3
4.3