writeups.xyz / Synology

Title	Vulnerabilities	Programs	Authors
A Pain in the NAS: Exploiting Cloud Connectivity to PWN your NAS: Synology DS920+ Edition	RCE	Synology	Vera Mens Sharon Brizinov
You Have One New Appwntment: Exploiting iCalendar Properties in Enterprise Applications	XSS SMTP Injection	VMware Synology Apple Microsoft Google NextCloud	Eugene Lim (@Spaceraccoonsec)
Your NAS is not your NAS !	RCE Memory Corruption Buffer Overflow	Synology	Angelboy (@Scwuaptx)
CVE-2021-29084: Exploiting CRLF Header Injection in Synology NAS for Unauthenticated File Downloads	CRLF Injection	Synology	Justin Taft
Unauthenticated File upload Vulnerability on Synology Sub-domain	Unrestricted File Upload	Synology	Touhid Shaikh

Page 1 of 1