CVE-2018-19953: QNAP NAS File Station Cross-Site Scripting Vulnerability. A
QNAP NAS File Station Cross-Site Scripting Vulnerability. A cross-site scripting vulnerability affecting QNAP NAS File Station could allow remote attackers to inject malicious code.
- CISA KEV-listed (remediation due 2022-06-14)
- used in ransomware campaigns
- EPSS 31.5% (96.9% percentile)