2 matches found
CVE-2017-12079
Files or directories accessible to external parties vulnerability in picasa.php in Synology Photo Station before 6.8.1-3458 and before 6.3-2970 allows remote attackers to obtain arbitrary files via progid field...
CVE-2017-12079
Synology Photo Station is affected by CVE-2017-12079. The vulnerability exists in the picasa.php file and allows remote attackers to obtain arbitrary files via the prog_id parameter. Affected versions are Photo Station prior to 6.8.1-3458 and prior to 6.3-2970. This is a remote, unauthenticated i...