CVE-2013-5760

QNAP Photo Station before firmware 4.0.3 build0912 allows remote attackers to list OS user accounts via a request to photo/p/api/list.php.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:qnap:photo_station_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:qnap:photo_station:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-06-09 19:55

Updated : 2023-12-10 11:31


NVD link : CVE-2013-5760

Mitre link : CVE-2013-5760

CVE.ORG link : CVE-2013-5760


JSON object : View

Products Affected

qnap

  • photo_station_firmware
  • photo_station
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor