SQL Injection Vulnerability in QNAP Music Station
CVE-2018-19952
7.5HIGH
What is CVE-2018-19952?
An SQL injection vulnerability exists in QNAP Music Station, allowing remote attackers to manipulate database queries. This exploitation could lead to unauthorized access to sensitive application information, particularly in versions prior to 5.1.13, 5.2.9, and 5.3.11. Users are advised to upgrade their software to mitigate this risk.
Affected Version(s)
Music Station < 5.1.13
Music Station < 5.2.9
Music Station < 5.3.11