CVE-2017-12071
CVE-2017-12071 is a server-side request forgery (SSRF) vulnerability in the Synology Photo Station component, affecting file_upload.php. The issue allows remote authenticated users to download arbitrary local files via the url parameter in versions prior to 6.7.4-3433 and 6.3-2968. Documented sou...