Cross-site scripting (XSS) vulnerability in Control Panel SSO Settings in Synology DiskStation Manager (DSM) before 6.2.1-23824 allows remote authenticated users to inject arbitrary web script or HTML via the URL parameter.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: synology

Published: 2019-04-01T14:28:46.543107Z

Updated: 2024-09-17T02:21:57.045Z

Reserved: 2018-07-05T00:00:00

Link: CVE-2018-13293

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-04-01T15:29:00.687

Modified: 2019-10-09T23:34:20.403

Link: CVE-2018-13293

cve-icon Redhat

No data.