cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-27619,https://securityvulnerability.io/vulnerability/CVE-2022-27619,Sensitive Information Exposure in Synology Note Station Client,"A vulnerability exists in the Synology Note Station Client prior to version 2.2.2-609 that allows man-in-the-middle attackers to intercept sensitive data due to cleartext transmission in authentication management. This could potentially expose important user information, leading to unauthorized access or data theft. The vulnerability can be exploited through unspecified vectors, emphasizing the need for secure communications in software applications.",Synology,Synology Note Station Client,6.8,MEDIUM,0.0010400000028312206,false,,false,false,false,,,false,false,,2022-08-03T03:15:00.000Z,0
CVE-2019-11827,https://securityvulnerability.io/vulnerability/CVE-2019-11827,,Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Shard in Synology Note Station before 2.5.3-0863 allows remote attackers to inject arbitrary web script or HTML via the object_id parameter.,Synology,Note Station,6.5,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2019-06-30T00:00:00.000Z,0
CVE-2018-8911,https://securityvulnerability.io/vulnerability/CVE-2018-8911,,Cross-site scripting (XSS) vulnerability in Attachment Preview in Synology Note Station before 2.5.1-0844 allows remote authenticated users to inject arbitrary web script or HTML via malicious attachments.,Synology,Note Station,6.5,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2018-05-09T13:29:00.000Z,0
CVE-2018-8912,https://securityvulnerability.io/vulnerability/CVE-2018-8912,,Cross-site scripting (XSS) vulnerability in SYNO.NoteStation.Note in Synology Note Station before 2.5.1-0844 allows remote authenticated users to inject arbitrary web script or HTML via the commit_msg parameter.,Synology,Note Station,6.5,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2018-05-09T13:29:00.000Z,0
CVE-2015-9103,https://securityvulnerability.io/vulnerability/CVE-2015-9103,,Multiple cross-site scripting (XSS) vulnerabilities in Synology Note Station 1.1-0212 and earlier allow remote authenticated attackers to inject arbitrary web script or HTML via the (1) note title or (2) file name of attachments.,Synology,Note Station,5.4,MEDIUM,0.0006699999794363976,false,,false,false,false,,,false,false,,2017-06-30T13:29:00.000Z,0