Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Photo Station — Vulnerabilities & Security Advisories 34

All 34 CVE vulnerabilities found in Photo Station, with AI-generated Chinese analysis, references, and POCs.

This page details Common Weakness Enumeration entries affecting Synology's Photo Station network-attached storage application software. It aggregates security flaws classified under various vulnerability types, including buffer overflows, path traversal, and cross-site scripting, which have been disclosed by vendors or identified by independent researchers. The collection covers advisory data and incident reports ranging from early software releases up to the present day, ensuring a comprehensive historical record of known security issues within the Photo Station ecosystem. By utilizing this resource, security professionals and system administrators can effectively track Synology’s official security advisories to understand the timeline and context of specific patches. Users may also analyze patterns within specific weakness classes to assess broader risk profiles associated with similar implementation flaws in web-based media management tools. Furthermore, the page allows for a detailed lookup of a product's vulnerability history, providing visibility into how known defects have evolved or been mitigated over successive versions. This structured approach aids in prioritizing remediation efforts and maintaining the integrity of managed photo libraries against evolving cyber threats without relying on unverified third-party claims. The data serves as a neutral reference for auditing compliance and reinforcing defense-in-depth strategies for environments relying on Synology NAS solutions for digital asset storage and management.

Vendor: Synology

CVE IDTitleCVSSSeverityPublished
CVE-2017-20210 Photo Station 9.8 -2025-11-11
CVE-2024-12923 Photo Station CWE-79 6.1 -2025-08-29
CVE-2024-32767 Photo Station CWE-79 6.3 Medium2024-11-22
CVE-2024-32768 Photo Station CWE-79 6.3 Medium2024-11-22
CVE-2024-32769 Photo Station CWE-79 6.3 Medium2024-11-22
CVE-2024-32770 Photo Station CWE-79 6.3 Medium2024-11-22
CVE-2023-47221 Photo Station CWE-22 5.5 Medium2024-03-08
CVE-2023-47562 Photo Station CWE-77 7.4 High2024-02-02
CVE-2023-47561 Photo Station CWE-79 5.5 Medium2024-02-02
CVE-2022-27593 DeadBolt Ransomware CWE-610 10.0 Critical2022-09-08
CVE-2022-22681 Synology Photo Station 授权问题漏洞 CWE-384 8.1 High2022-07-06
CVE-2021-44057 Improper authentication in Photo Station CWE-287 7.1 High2022-05-05
CVE-2021-34356 Stored XSS Vulnerability in Photo Station CWE-79 7.6 High2021-10-01
CVE-2021-34355 Stored XSS Vulnerability in Photo Station CWE-79 7.6 High2021-10-01
CVE-2021-34354 Stored Cross-site Scripting Vulnerability in Photo Station CWE-79 7.6 High2021-10-01
CVE-2020-2502 Cross-site Scripting Vulnerability in Photo Station CWE-79 6.1 -2021-02-17
CVE-2020-2491 Cross-site Scripting Vulnerability in Photo Station CWE-79 6.1 -2020-12-10
CVE-2018-19954 QNAP Systems TS-870 跨站脚本漏洞 CWE-79 6.1 -2020-11-02
CVE-2018-19956 QNAP Systems TS-870 跨站脚本漏洞 CWE-79 6.1 -2020-11-02
CVE-2018-19955 QNAP Systems TS-870 跨站脚本漏洞 CWE-79 6.1 -2020-11-02
CVE-2019-11822 Synology Photo Station 路径遍历漏洞 CWE-23 4.3 Medium2019-06-30
CVE-2019-11821 Synology Photo Station SQL注入漏洞 CWE-89 7.3 High2019-06-30
CVE-2018-0722 QNAP Systems QNAP QTS Photo Station 路径遍历漏洞 7.5 -2019-02-01
CVE-2018-13282 Synology Photo Station 安全漏洞 CWE-384 7.6 -2018-10-31
CVE-2018-0715 QNAP Photo Station 跨站脚本漏洞 6.1 -2018-08-27
CVE-2018-8925 Synology Photo Station 跨站请求伪造漏洞 8.8 -2018-06-08
CVE-2018-8926 Synology Photo Station 安全漏洞 CWE-625 8.8 -2018-06-08
CVE-2017-13073 QNAP NAS application Photo Station 跨站脚本漏洞 6.1 -2018-04-23
CVE-2017-16772 Synology Photo Station 输入验证漏洞 CWE-434 8.8 -2018-03-22
CVE-2017-16771 Synology Photo Station Log Viewer 跨站脚本漏洞 CWE-79 6.1 -2018-03-22

All 34 known CVE vulnerabilities affecting Photo Station with full Chinese analysis, references, and POCs where available.