CVE-2015-6913 in Download Stationinformación

Resumen

por MITRE

Cross-site scripting (XSS) vulnerability in the "Create download task via URL" feature in Synology Download Station before 3.5-2967 allows remote attackers to inject arbitrary web script or HTML via the urls parameter in an add_url_task action to dlm/downloadman.cgi.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservar

2015-09-11

Divulgación

2015-09-11

Moderación

aceptado

Artículo

VDB-77683

CPE

listo

EPSS

0.01917

KEV

no

Actividades

muy bajo

Fuentes

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!