Filtered by vendor Asustor
Subscriptions
Filtered by product Asustor Data Master
Subscriptions
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2018-11511 | 1 Asustor | 1 Asustor Data Master | 2024-11-21 | N/A |
The tree list functionality in the photo gallery application in ASUSTOR ADM 3.1.0.RFQ3 has a SQL injection vulnerability that affects the 'album_id' or 'scope' parameter via a photo-gallery/api/album/tree_lists/ URI. | ||||
CVE-2018-11509 | 1 Asustor | 1 Asustor Data Master | 2024-11-21 | N/A |
ASUSTOR ADM 3.1.0.RFQ3 uses the same default root:admin username and password as it does for the NAS itself for applications that are installed from the online repository. This may allow an attacker to login and upload a webshell. |
Page 1 of 1.