CVE-2025-3450 Automation Runtime SDM requests may impact system

An Improper Resource Locking vulnerability in the SDM component of B&R Automation Runtime versions before 6.3 and before Q4.93 may allow an unauthenticated network-based attacker to delete data causing denial of service conditions...

B&R Automation Runtime 安全漏洞

B&R Automation Runtime is an automation runtime from B&R Automation. A security vulnerability exists in B&R Automation Runtime versions prior to 6.3 and prior to Q4.93 that stems from improper resource locking of the SDM component, which could lead to a denial of service...

WordPress Plugin File Manager Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

PT-2019-12509 · Synology · Synology Photo Station

Name of the Vulnerable Software and Affected Versions: Synology Photo Station versions prior to 6.8.11-3489 Synology Photo Station versions prior to 6.3-2977 Description: The issue allows remote attackers to upload arbitrary files via the uploadphoto parameter, due to a relative path traversal...

CVE-2018-8926

Permissive regular expression vulnerability in synophotodsmuser in Synology Photo Station before 6.8.5-3471 and before 6.3-2975 allows remote authenticated users to conduct privilege escalation attacks via the fullname parameter...

CVE-2016-10323

Synology Photo Station before 6.3-2958 allows local users to gain privileges by leveraging setuid execution of a "synophotodsmuser --copy-no-ea" command...