8 matches found
EUVD-2015-5965
Malware in sbrugna...
EUVD-2015-5979
Malware in sbrugna...
Unrestricted file upload
Unrestricted file upload vulnerability in QNAP Signage Station before 2.0.1 allows remote authenticated users to execute arbitrary code by uploading an executable file, and then accessing this file via an unspecified URL...
Authentication flaw
QNAP Signage Station before 2.0.1 allows remote attackers to bypass authentication, and consequently upload files, via a spoofed HTTP request...
CVE-2015-6022
QCV: CVE-2015-6022 describes an unrestricted file upload in QNAP Signage Station prior to version 2.0.1. An authenticated user can upload a dangerous file (e.g., a PHP script) and access it via a predictable URL to execute code with the server’s privileges. Impact is remote code execution with hi...
CVE-2015-6022
Unrestricted file upload vulnerability in QNAP Signage Station before 2.0.1 allows remote authenticated users to execute arbitrary code by uploading an executable file, and then accessing this file via an unspecified URL...
CVE-2015-6036
QNAP Signage Station before 2.0.1 allows remote attackers to bypass authentication, and consequently upload files, via a spoofed HTTP request...
QNAP Systems Signage Station Authentication Bypass Vulnerability
QNAP Systems Signage Station is a suite of ad creation applications for QNAP NAS. An authentication bypass vulnerability exists in QNAP Systems Signage Station, which allows remote attackers to perform unauthorized actions by sending spoofed HTTP requests...