2021-06-02 02:00:14
synology
PUBLISHED
Improper neutralization of special elements used in an SQL command (SQL Injection) vulnerability in PHP component in Synology Photo Station before 6.8.14-3500 allows remote authenticated users to execute arbitrary SQL command via unspecified vectors.