CVE-2026-22895 | QNAP QuFTP Service up to 1.4.2/1.5.1/1.6.1 cross site scripting (qsa-26-15)

Inserito da Angelo Barbosa | Mar 20, 2026 | CVE

A vulnerability was found in QNAP QuFTP Service up to 1.4.2/1.5.1/1.6.1 and classified as problematic. Impacted is an unknown function. The manipulation results in cross site scripting.

This vulnerability is cataloged as CVE-2026-22895. The attack may be launched remotely. There is no exploit available.

It is suggested to upgrade the affected component.

CVE-2026-22895 | QNAP QuFTP Service up to 1.4.2/1.5.1/1.6.1 cross site scripting (qsa-26-15)

Post correlati

CVE-2024-51425 | Ethereum 1.12.2 WaterToken Contract permission

CVE-2023-49396 | JFinalCMS 5.0.0 /admin/category/save cross-site request forgery

CVE-2024-30855 | DedeCMS 5.7 makehtml_list_action.php cross-site request forgery

CVE-2025-12585 | MxChat Plugin up to 2.5.5 on WordPress Conversation information disclosure