2017-05-12 20:00:00
synology
PUBLISHED
Command injection vulnerability in login.php in Synology Photo Station before 6.5.3-3226 allows remote attackers to execute arbitrary code via shell metacharacters in the crafted X-Forwarded-For header.