CVE-2017-13073

Summary

Cross-site scripting (XSS) vulnerability in QNAP NAS application Photo Station versions 5.2.7, 5.4.3, and their earlier versions could allow remote attackers to inject arbitrary web script or HTML.

Affected Software

VendorProductVersion RangeStatus
QNAPPhoto Stationversions 5.4.3 and earlier for QTS 4.3.xaffected
QNAPPhoto Stationversions 5.2.7 and earlier for QTS 4.2.xaffected

Weaknesses

  • Cross-site scripting

ADP Enrichment

CVE Program Container

Additional References

References