CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-12072

Cross-site scripting (XSS) vulnerability in PixlrEditorHandler.php in Synology Photo Station before 6.8.0-3456 allows remote authenticated users to inject arbitrary web scripts or HTML via the id parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 41.0%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

Products affected by CVE-2017-12072

Synology » Photo Station » Version: 5.2-2398

cpe:2.3:a:synology:photo_station:5.2-2398
Synology » Photo Station » Version: 5.2-2413

cpe:2.3:a:synology:photo_station:5.2-2413
Synology » Photo Station » Version: 6.0-2636

cpe:2.3:a:synology:photo_station:6.0-2636
Synology » Photo Station » Version: 6.0-2638

cpe:2.3:a:synology:photo_station:6.0-2638
Synology » Photo Station » Version: 6.0-2639

cpe:2.3:a:synology:photo_station:6.0-2639
Synology » Photo Station » Version: 6.0-2640

cpe:2.3:a:synology:photo_station:6.0-2640
Synology » Photo Station » Version: 6.3

cpe:2.3:a:synology:photo_station:6.3
Synology » Photo Station » Version: 6.3-2944

cpe:2.3:a:synology:photo_station:6.3-2944
Synology » Photo Station » Version: 6.3-2958

cpe:2.3:a:synology:photo_station:6.3-2958
Synology » Photo Station » Version: 6.3-2960

cpe:2.3:a:synology:photo_station:6.3-2960
Synology » Photo Station » Version: 6.3-2962

cpe:2.3:a:synology:photo_station:6.3-2962
Synology » Photo Station » Version: 6.3-2963

cpe:2.3:a:synology:photo_station:6.3-2963
Synology » Photo Station » Version: 6.3-2964

cpe:2.3:a:synology:photo_station:6.3-2964
Synology » Photo Station » Version: 6.3-2965

cpe:2.3:a:synology:photo_station:6.3-2965
Synology » Photo Station » Version: 6.3-2967

cpe:2.3:a:synology:photo_station:6.3-2967
Synology » Photo Station » Version: 6.3-2968

cpe:2.3:a:synology:photo_station:6.3-2968
Synology » Photo Station » Version: 6.3-2970

cpe:2.3:a:synology:photo_station:6.3-2970
Synology » Photo Station » Version: 6.3-2971

cpe:2.3:a:synology:photo_station:6.3-2971
Synology » Photo Station » Version: 6.3-2974

cpe:2.3:a:synology:photo_station:6.3-2974
Synology » Photo Station » Version: 6.3-2975

cpe:2.3:a:synology:photo_station:6.3-2975
Synology » Photo Station » Version: 6.3-2976

cpe:2.3:a:synology:photo_station:6.3-2976
Synology » Photo Station » Version: 6.3-2977

cpe:2.3:a:synology:photo_station:6.3-2977
Synology » Photo Station » Version: 6.3-2978

cpe:2.3:a:synology:photo_station:6.3-2978
Synology » Photo Station » Version: 6.4-3166

cpe:2.3:a:synology:photo_station:6.4-3166
Synology » Photo Station » Version: 6.5.0-3218

cpe:2.3:a:synology:photo_station:6.5.0-3218
Synology » Photo Station » Version: 6.5.1-3223

cpe:2.3:a:synology:photo_station:6.5.1-3223
Synology » Photo Station » Version: 6.5.2-3225

cpe:2.3:a:synology:photo_station:6.5.2-3225
Synology » Photo Station » Version: 6.5.3-3226

cpe:2.3:a:synology:photo_station:6.5.3-3226
Synology » Photo Station » Version: 6.6.0-3339

cpe:2.3:a:synology:photo_station:6.6.0-3339
Synology » Photo Station » Version: 6.6.1-3345

cpe:2.3:a:synology:photo_station:6.6.1-3345
Synology » Photo Station » Version: 6.6.2-3346

cpe:2.3:a:synology:photo_station:6.6.2-3346
Synology » Photo Station » Version: 6.6.3-3347

cpe:2.3:a:synology:photo_station:6.6.3-3347
Synology » Photo Station » Version: 6.7.0-3414

cpe:2.3:a:synology:photo_station:6.7.0-3414
Synology » Photo Station » Version: 6.7.1-3419

cpe:2.3:a:synology:photo_station:6.7.1-3419
Synology » Photo Station » Version: 6.7.2-3429

cpe:2.3:a:synology:photo_station:6.7.2-3429
Synology » Photo Station » Version: 6.7.3-3432

cpe:2.3:a:synology:photo_station:6.7.3-3432
Synology » Photo Station » Version: 6.7.4-3433

cpe:2.3:a:synology:photo_station:6.7.4-3433
Synology » Photo Station » Version: 6.8

cpe:2.3:a:synology:photo_station:6.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-12072

Products

Pricing

Contact Us