A vulnerability identified as problematic has been detected in QNAP QTS and QuTS hero . This impacts an unknown function. The manipulation leads to cross site scripting. This vulnerability is referenced as CVE-2026-41539 . Remote exploitation of the attack is possible. No exploit is available. You should upgrade the affected component.