VYPR
Unrated severityNVD Advisory· Published Jun 9, 2014· Updated Jun 16, 2026

CVE-2013-5760

CVE-2013-5760

Description

QNAP Photo Station before firmware 4.0.3 build0912 allows remote attackers to list OS user accounts via a request to photo/p/api/list.php.

Affected products

3
  • cpe:2.3:h:qnap:photo_station:-:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:h:qnap:photo_station:-:*:*:*:*:*:*:*
    • cpe:2.3:o:qnap:photo_station_firmware:*:*:*:*:*:*:*:*range: <=4.0.3
    • (no CPE)range: < firmware 4.0.3 build0912

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.