← Back to CVE List
CVE-2018-13282
Session fixation vulnerability in SYNO.PhotoStation.Auth in Synology Photo Station before 6.8.7-3481 allows remote attackers to hijack web sessions via the PHPSESSID parameter.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt