Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2022-27593 KEV |
|
[KEV] Vulnerability in Qnap photo-station (CVE-2022-27593)
vulnerability in Qnap photo-station (CVE-2022-27593). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-7195 KEV |
|
[KEV] Path Traversal in Qnap photo-station (CVE-2019-7195)
path traversal in Qnap photo-station (CVE-2019-7195). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-7194 KEV |
|
[KEV] Path Traversal in Qnap photo-station (CVE-2019-7194)
path traversal in Qnap photo-station (CVE-2019-7194). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-7192 KEV |
|
[KEV] Authorization Flaw in Qnap photo-station (CVE-2019-7192)
vulnerability in Qnap photo-station (CVE-2019-7192). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2017-12072 |
|
Cross-Site Scripting (XSS) in synology (CVE-2017-12072)
cross-site scripting in synology (CVE-2017-12072). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12080 |
|
Information Disclosure in synology (CVE-2017-12080)
vulnerability in synology (CVE-2017-12080). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12079 |
|
Vulnerability in synology (CVE-2017-12079)
vulnerability in synology (CVE-2017-12079). Confidential information can be exposed externally.
|
| CVE-2017-12071 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2017-12071)
SSRF in ssrf (CVE-2017-12071). Confidential information can be exposed externally.
|
| CVE-2017-11161 |
|
SQL Injection in sqli (CVE-2017-11161)
SQL injection in sqli (CVE-2017-11161). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11162 |
|
Path Traversal in path-traversal (CVE-2017-11162)
path traversal in path-traversal (CVE-2017-11162). Confidential information can be exposed externally.
|
| CVE-2017-9555 |
|
Cross-Site Scripting (XSS) in synology (CVE-2017-9555)
cross-site scripting in synology (CVE-2017-9555). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11151 |
|
Authentication Bypass in synology (CVE-2017-11151)
authentication bypass in synology (CVE-2017-11151). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11152 |
|
Path Traversal in path-traversal (CVE-2017-11152)
path traversal in path-traversal (CVE-2017-11152). Data can be tampered with by attackers.
|
| CVE-2017-11153 |
|
Unsafe Deserialization in deserialization (CVE-2017-11153)
vulnerability in deserialization (CVE-2017-11153). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11154 |
|
Unrestricted File Upload in synology (CVE-2017-11154)
vulnerability in synology (CVE-2017-11154). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11155 |
|
Vulnerability in synology (CVE-2017-11155)
vulnerability in synology (CVE-2017-11155). Confidential information can be exposed externally.
|
| CVE-2015-9102 |
|
Cross-Site Scripting (XSS) in synology (CVE-2015-9102)
cross-site scripting in synology (CVE-2015-9102). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9552 |
|
Vulnerability in synology (CVE-2017-9552)
vulnerability in synology (CVE-2017-9552). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10329 |
|
Command Injection in synology (CVE-2016-10329)
command injection in synology (CVE-2016-10329). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10331 |
|
Path Traversal in path-traversal (CVE-2016-10331)
path traversal in path-traversal (CVE-2016-10331). Confidential information can be exposed externally.
|
| CVE-2016-10330 |
|
Path Traversal in path-traversal (CVE-2016-10330)
path traversal in path-traversal (CVE-2016-10330). Confidential information can be exposed externally.
|
| CVE-2016-10323 |
|
Vulnerability in synology (CVE-2016-10323)
vulnerability in synology (CVE-2016-10323). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10322 |
|
Command Injection in synology (CVE-2016-10322)
command injection in synology (CVE-2016-10322). Successful exploitation can lead to full system takeover.
|