NuytsTech Security

CVE-2018-8911

by ·

Cross-site scripting (XSS) vulnerability in Attachment Preview in Synology Note Station before 2.5.1-0844 allows remote authenticated users to inject arbitrary web script or HTML via malicious attachments.

Date published : 2018-05-09

https://www.synology.com/zh-tw/support/security/Synology_SA_18_03

Tags: