Arbitrary File Access Vulnerability in Synology Photo Station

Arbitrary File Access Vulnerability in Synology Photo Station

CVE-2017-12079 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Files or directories accessible to external parties vulnerability in picasa.php in Synology Photo Station before 6.8.1-3458 and before 6.3-2970 allows remote attackers to obtain arbitrary files via prog_id field.

Learn more about our External Network Penetration Testing.