cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2018-13288,https://securityvulnerability.io/vulnerability/CVE-2018-13288,,Information exposure vulnerability in SYNO.FolderSharing.List in Synology File Station before 1.2.3-0252 and before 1.1.5-0125 allows remote attackers to obtain sensitive information via the (1) folder_path or (2) real_path parameter.,Synology,File Station,5.3,MEDIUM,0.0013299999991431832,false,,false,false,false,,,false,false,,2019-04-01T15:29:00.000Z,0
CVE-2018-8923,https://securityvulnerability.io/vulnerability/CVE-2018-8923,,Cross-site scripting (XSS) vulnerability in Attachment Preview in Synology File Station before 1.1.4-0122 allows remote authenticated users to inject arbitrary web script or HTML via malicious attachments.,Synology,File Station,6.5,MEDIUM,0.000539999979082495,false,,false,false,false,,,false,false,,2018-06-05T00:00:00.000Z,0
CVE-2017-15893,https://securityvulnerability.io/vulnerability/CVE-2017-15893,,Directory traversal vulnerability in the SYNO.FileStation.Extract in Synology File Station before 1.1.1-0099 allows remote authenticated users to write arbitrary files via the dest_folder_path parameter.,Synology,Synology File Station,6.5,MEDIUM,0.0006600000197067857,false,,false,false,false,,,false,false,,2017-12-08T16:29:00.000Z,0