CVE-2019-7185

This cross-site scripting (XSS) vulnerability in Music Station allows remote attackers to inject and execute scripts on the administrator�s management console. To fix this vulnerability, QNAP recommend updating Music Station to their latest versions.

Source: CVE-2019-7185