2 matches found
CVE-2017-16772
Improper input validation vulnerability in SYNOPHOTOFlickrMultiUpload in Synology Photo Station before 6.8.3-3463 and before 6.3-2971 allows remote authenticated users to execute arbitrary codes via the progid parameter...
CVE-2017-16772
Synology Photo Station (before versions 6.8.3-3463 and 6.3-2971) contains an input validation vulnerability in the SYNOPHOTO_Flickr_MultiUpload component. This flaw allows remote authenticated users to execute arbitrary code via the prog_id parameter. Root cause: improper input validation within ...