Sploit.io - Search

CVE-2018-0723

Severity: Unknown

Description: Cross-site scripting (XSS) vulnerability in Q'center Virtual Appliance 1.8.1014 and earlier versions could allow remote attackers to inject Javascript code in the compromised application, a different vulnerability than CVE-2018-0724.

Affected Products:

• QNAP Q'center Virtual Appliance - Versions: Q'center Virtual Appliance 1.8.1014 and earlier versions

References:

• https://www.qnap.com/zh-tw/security-advisory/nas-201812-26

CVE-2018-0724

Severity: Unknown

Description: Cross-site scripting (XSS) vulnerability in Q'center Virtual Appliance 1.8.1014 and earlier versions could allow remote attackers to inject Javascript code in the compromised application, a different vulnerability than CVE-2018-0723.

Affected Products:

• QNAP Q'center Virtual Appliance - Versions: Q'center Virtual Appliance 1.8.1014 and earlier versions

References:

• https://www.qnap.com/zh-tw/security-advisory/nas-201812-26