2024-12-09 03:32:53
synology
PUBLISHED
Improper neutralization of input during web page generation (Cross-site Scripting) vulnerability in WiFi Connect Setting functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users with administrator privileges to read or write specific files containing non-sensitive information and conduct limited denial-of-service attacks by injecting arbitrary web script or HTML.