CVE-2013-5760

Currently unrated

Key Information:

Vendor
Qnap
Status
Photo Station Firmware
Photo Station
Vendor
CVE Published:
9 June 2014

Summary

QNAP Photo Station before firmware 4.0.3 build0912 allows remote attackers to list OS user accounts via a request to photo/p/api/list.php.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/89117
vdb-entryx_refsource_XF
https://www3.trustwave.com/spiderlabs/advisories/TWSL2013...
x_refsource_MISC

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.