CVE-2019-7184

This cross-site scripting (XSS) vulnerability in Video Station allows remote attackers to inject and execute scripts on the administrator�s management console. To fix this vulnerability, QNAP recommend updating Video Station to their latest versions.

Source: CVE-2019-7184