Cross-site scripting (XSS) vulnerability in Control Panel SSO Settings in Synology DiskStation Manager (DSM) before 6.2.1-23824 allows remote authenticated users to inject arbitrary web script or HTML via the URL parameter.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.synology.com/security/advisory/Synology_SA_18_51 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: synology
Published: 2019-04-01T14:28:46.543107Z
Updated: 2024-09-17T02:21:57.045Z
Reserved: 2018-07-05T00:00:00
Link: CVE-2018-13293
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-04-01T15:29:00.687
Modified: 2019-10-09T23:34:20.403
Link: CVE-2018-13293
Redhat
No data.