CVE

CVE-2018-8910

admin

CVE-2018-8910

Cross-site scripting (XSS) vulnerability in Attachment Preview in Synology Drive before 1.0.1-10253 allows remote authenticated users to inject arbitrary web script or HTML via malicious attachments.

Source: CVE-2018-8910

Exit mobile version