4 matches found
CVE-2024-29227
Improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability in Layout.LayoutSave webapi component in Synology Surveillance Station before 9.2.0-9289 and 9.2.0-11289 allows remote authenticated users to read database containing non-sensitive information and...
CVE-2024-29227
Improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability in Layout.LayoutSave webapi component in Synology Surveillance Station before 9.2.0-9289 and 9.2.0-11289 allows remote authenticated users to read database containing non-sensitive information and...
CVE-2024-29227
Improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability in Layout.LayoutSave webapi component in Synology Surveillance Station before 9.2.0-9289 and 9.2.0-11289 allows remote authenticated users to read database containing non-sensitive information and...
CVE-2024-29227
Synology Surveillance Station is affected by an SQL injection in the Layout.LayoutSave webapi component. The issue, present in versions prior to 9.2.0-9289 and prior to 9.2.0-11289, can be exploited by remote authenticated users to read database contents (non-sensitive data) and may enable a limi...