Security Advisory

CVE-2021-29090

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-06-02 02:00:14

Last updated 2024-09-17 03:29:04

Assigner synology

State PUBLISHED

Description

Improper neutralization of special elements used in an SQL command (SQL Injection) vulnerability in PHP component in Synology Photo Station before 6.8.14-3500 allows remote authenticated users to execute arbitrary SQL command via unspecified vectors.

← Browse all CVEs View on cve.org ↗