Total
6 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2025-52425 | 1 Qnap | 1 Qumagie | 2025-11-14 | N/A | 9.8 CRITICAL |
| An SQL injection vulnerability has been reported to affect QuMagie. A remote attacker can exploit the vulnerability to execute unauthorized code or commands. We have already fixed the vulnerability in the following versions: QuMagie 2.7.0 and later | |||||
| CVE-2025-58464 | 1 Qnap | 1 Qumagie | 2025-11-14 | N/A | 7.5 HIGH |
| A relative path traversal vulnerability has been reported to affect QuMagie. If a remote attacker, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the following version: QuMagie 2.7.3 and later | |||||
| CVE-2023-41285 | 1 Qnap | 1 Qumagie | 2024-11-21 | N/A | 7.4 HIGH |
| A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network. We have already fixed the vulnerability in the following version: QuMagie 2.1.4 and later | |||||
| CVE-2023-41284 | 1 Qnap | 1 Qumagie | 2024-11-21 | N/A | 7.4 HIGH |
| A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to inject malicious code via a network. We have already fixed the vulnerability in the following version: QuMagie 2.1.4 and later | |||||
| CVE-2023-39295 | 1 Qnap | 1 Qumagie | 2024-11-21 | N/A | 8.8 HIGH |
| An OS command injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following version: QuMagie 2.1.3 and later | |||||
| CVE-2024-38642 | 1 Qnap | 1 Qumagie | 2024-09-16 | N/A | 7.8 HIGH |
| An improper certificate validation vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow local network users to compromise the security of the system via unspecified vectors. We have already fixed the vulnerability in the following version: QuMagie 2.3.1 and later | |||||