← ExploitWatch
HomeExploited Vulnerabilities

CVE-2018-19953 — Actively Exploited: Network Attached Storage (NAS) (QNAP)

A cross-site scripting vulnerability affecting QNAP NAS File Station could allow remote attackers to inject malicious code.

CVE IDCVE-2018-19953
VendorQNAP
ProductNetwork Attached Storage (NAS)
Vulnerability nameQNAP NAS File Station Cross-Site Scripting Vulnerability
Date added2022-05-24
Remediation due2022-06-14
Known ransomware useKnown
Required actionApply updates per vendor instructions.
DescriptionA cross-site scripting vulnerability affecting QNAP NAS File Station could allow remote attackers to inject malicious code.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →