CVE-2017-11161
Synology Photo Station is affected by SQL injection vulnerabilities (CVE-2017-11161) in versions prior to 6.7.4-3433 and 6.3-2968. The flaws allow remote attackers to execute arbitrary SQL commands via the article_id parameter to label.php or the type parameter to synotheme.php. Impact is high du...