Arbitrary Web Script Injection Vulnerability in QNAP QTS 4.3.3 and 4.3.4

Arbitrary Web Script Injection Vulnerability in QNAP QTS 4.3.3 and 4.3.4

CVE-2018-0711 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in QNAP QTS 4.3.3 build 20180126, QTS 4.3.4 build 20180315, and their earlier versions could allow remote attackers to inject arbitrary web script or HTML.

Learn more about our Web App Pen Testing.