VYPR
Medium severity6.1NVD Advisory· Published Nov 27, 2018· Updated Jun 17, 2026

CVE-2018-13331

CVE-2018-13331

Description

Cross-site scripting in Control Panel in TerraMaster TOS version 3.1.03 allows attackers to execute JavaScript when viewing users by placing JavaScript in their usernames.

Affected products

3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.