Vulnerabilities > Qnap > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-24 | CVE-2020-2503 | Cross-site Scripting vulnerability in Qnap QES If exploited, this stored cross-site scripting vulnerability could allow remote attackers to inject malicious code in File Station. | 5.4 |
| 2020-12-10 | CVE-2020-2498 | Cross-site Scripting vulnerability in Qnap QTS and Quts Hero If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in certificate configuration. | 6.1 |
| 2020-12-10 | CVE-2020-2497 | Cross-site Scripting vulnerability in Qnap QTS and Quts Hero If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in System Connection Logs. | 6.1 |
| 2020-12-10 | CVE-2020-2496 | Cross-site Scripting vulnerability in Qnap QTS and Quts Hero If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in File Station. | 6.1 |
| 2020-12-10 | CVE-2020-2495 | Cross-site Scripting vulnerability in Qnap QTS and Quts Hero If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code in File Station. | 6.1 |
| 2020-12-10 | CVE-2020-2494 | Cross-site Scripting vulnerability in Qnap Music Station This cross-site scripting vulnerability in Music Station allows remote attackers to inject malicious code. | 6.1 |
| 2020-12-10 | CVE-2020-2493 | Cross-site Scripting vulnerability in Qnap Multimedia Console This cross-site scripting vulnerability in Multimedia Console allows remote attackers to inject malicious code. | 6.1 |
| 2020-12-10 | CVE-2020-2491 | Cross-site Scripting vulnerability in Qnap Photo Station This cross-site scripting vulnerability in Photo Station allows remote attackers to inject malicious code. | 6.1 |
| 2020-11-02 | CVE-2018-19956 | Cross-site Scripting vulnerability in Qnap Photo Station The cross-site scripting vulnerability has been reported to affect earlier versions of Photo Station. | 6.1 |
| 2020-11-02 | CVE-2018-19955 | Cross-site Scripting vulnerability in Qnap Photo Station The cross-site scripting vulnerability has been reported to affect earlier versions of Photo Station. | 6.1 |