Photo Station Security Vulnerabilities and Issues — Photo Station CVE List

Lucene search

SynologyPhoto Station

19 matches found

CVE•added 2017/08/08 3:29 p.m.•61 views

CVE-2017-11155

An information exposure vulnerability in index.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to obtain sensitive system information via unspecified vectors.

7.5CVSS7.2AI score0.35175EPSS

CVE•added 2017/08/08 3:29 p.m.•57 views

CVE-2017-11151

A vulnerability in synotheme_upload.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to upload arbitrary files without authentication via the logo_upload action.

9.8CVSS9.5AI score0.14779EPSS

CVE•added 2017/09/08 2:29 p.m.•50 views

CVE-2017-11161

Multiple SQL injection vulnerabilities in Synology Photo Station before 6.7.4-3433 and 6.3-2968 allow remote attackers to execute arbitrary SQL commands via the (1) article_id parameter to label.php; or (2) type parameter to synotheme.php.

9.8CVSS10AI score0.00585EPSS

CVE•added 2017/12/04 7:29 p.m.•49 views

CVE-2017-12079

Files or directories accessible to external parties vulnerability in picasa.php in Synology Photo Station before 6.8.1-3458 and before 6.3-2970 allows remote attackers to obtain arbitrary files via prog_id field.

7.5CVSS7.5AI score0.00297EPSS

CVE•added 2017/12/20 6:29 p.m.•48 views

CVE-2017-12072

Cross-site scripting (XSS) vulnerability in PixlrEditorHandler.php in Synology Photo Station before 6.8.0-3456 allows remote authenticated users to inject arbitrary web scripts or HTML via the id parameter.

5.4CVSS5.1AI score0.00187EPSS

CVE•added 2017/08/08 3:29 p.m.•47 views

CVE-2017-11153

Deserialization vulnerability in synophoto_csPhotoMisc.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to gain administrator privileges via a crafted serialized payload.

9.8CVSS9.3AI score0.15084EPSS

CVE•added 2017/04/10 6:59 p.m.•44 views

CVE-2016-10323

Synology Photo Station before 6.3-2958 allows local users to gain privileges by leveraging setuid execution of a "synophoto_dsm_user --copy-no-ea" command.

7.8CVSS7.6AI score0.0004EPSS

CVE•added 2017/08/08 3:29 p.m.•43 views

CVE-2017-11154

Unrestricted file upload vulnerability in PixlrEditorHandler.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to create arbitrary PHP scripts via the type parameter.

7.2CVSS7.5AI score0.06862EPSS

CVE•added 2017/09/08 2:29 p.m.•43 views

CVE-2017-12071

Server-side request forgery (SSRF) vulnerability in file_upload.php in Synology Photo Station before 6.7.4-3433 and 6.3-2968 allows remote authenticated users to download arbitrary local files via the url parameter.

6.5CVSS6.8AI score0.00344EPSS

CVE•added 2017/05/12 8:29 p.m.•42 views

CVE-2016-10329

Command injection vulnerability in login.php in Synology Photo Station before 6.5.3-3226 allows remote attackers to execute arbitrary code via shell metacharacters in the crafted 'X-Forwarded-For' header.

9.8CVSS9.7AI score0.15108EPSS

CVE•added 2017/09/08 2:29 p.m.•41 views

CVE-2017-11162

Directory traversal vulnerability in synphotoio in Synology Photo Station before 6.7.4-3433 and 6.3-2968 allows remote authenticated users to read arbitrary files via unspecified vectors.

6.5CVSS6.6AI score0.00375EPSS

CVE•added 2017/08/08 3:29 p.m.•40 views

CVE-2017-11152

Directory traversal vulnerability in PixlrEditorHandler.php in Synology Photo Station before 6.7.3-3432 and 6.3-2967 allows remote attackers to write arbitrary files via the path parameter.

7.5CVSS7.9AI score0.14053EPSS

CVE•added 2017/12/04 7:29 p.m.•40 views

CVE-2017-12080

An information exposure vulnerability in default HTTP configuration file in Synology Photo Station before 6.8.1-3458 and before 6.3-2970 allows remote attackers to obtain sensitive system information via .htaccess file.

5.3CVSS5.1AI score0.0023EPSS

CVE•added 2017/04/10 6:59 p.m.•38 views

CVE-2016-10322

Synology Photo Station before 6.3-2958 allows remote authenticated guest users to execute arbitrary commands via shell metacharacters in the X-Forwarded-For HTTP header to photo/login.php.

8.8CVSS8.7AI score0.02815EPSS

CVE•added 2017/08/24 7:29 p.m.•38 views

CVE-2017-9555

Cross-site scripting (XSS) vulnerability in PixlrEditorHandler.php in Synology Photo Station before 6.7.0-3414 allows remote attackers to inject arbitrary web script or HTML via the image parameter.

5.4CVSS5.4AI score0.00234EPSS

CVE•added 2017/06/13 1:29 p.m.•37 views

CVE-2017-9552

A design flaw in authentication in Synology Photo Station 6.0-2528 through 6.7.1-3419 allows local users to obtain credentials via cmdline. Synology Photo Station employs the synophoto_dsm_user program to authenticate username and password by "synophoto_dsm_user --auth USERNAME PASSWORD", and local...

7.8CVSS7.6AI score0.00044EPSS

CVE•added 2017/06/30 1:29 p.m.•35 views

CVE-2015-9102

Multiple cross-site scripting (XSS) vulnerabilities in Synology Photo Station 6.0 before 6.0-2638 and 6.3 before 6.3-2962 allow remote authenticated attackers to inject arbitrary web script or HTML via the (1) album name, (2) file name of uploaded photos, (3) description of photos, or (4) tag of th...

5.4CVSS5.1AI score0.00327EPSS

CVE•added 2017/05/12 8:29 p.m.•34 views

CVE-2016-10331

Directory traversal vulnerability in download.php in Synology Photo Station before 6.5.3-3226 allows remote attackers to read arbitrary files via a full pathname in the id parameter.

7.5CVSS7.4AI score0.00391EPSS

CVE•added 2017/05/12 8:29 p.m.•32 views

CVE-2016-10330

Directory traversal vulnerability in synophoto_dsm_user, a SUID program, as used in Synology Photo Station before 6.5.3-3226 allows local users to write to arbitrary files via unspecified vectors.

7.1CVSS6.7AI score0.00054EPSS