Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Photo Station
Vulnerability Description
An OS command injection vulnerability has been reported to affect Photo Station. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following version: Photo Station 6.4.2 ( 2023/12/15 ) and later
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L
Vulnerability Type
在命令中使用的特殊元素转义处理不恰当(命令注入)
Vulnerability Title
QNAP Systems Photo Station 命令注入漏洞
Vulnerability Description
QNAP Systems Photo Station是中国威联通科技(QNAP Systems)公司的一个线上相册。用于整理 Qnap Nas 上的多媒体内容(相片和影片)。 QNAP Photo Station 6.4.2 版本之前存在命令注入漏洞,该漏洞源于存在操作系统命令注入漏洞。该漏洞可能允许经过身份验证的用户通过网络执行命令。
CVSS Information
N/A
Vulnerability Type
N/A