CVE-2017-9556
11.08.2017, 20:29
Cross-site scripting (XSS) vulnerability in Video Metadata Editor in Synology Video Station before 2.3.0-1435 allows remote authenticated attackers to inject arbitrary web script or HTML via the title parameter.
| Vendor | Product | Version |
|---|---|---|
| synology | video_station | 𝑥 ≤ 2.2.1-1364 |
𝑥
= Vulnerable software versions