QNAP TS-453E Hyper Data Protector Plugin query_original_file_size SQL Injection Remote Code Execution Vulnerability

A critical vulnerability in QNAP TS-453E NAS devices (CVE-2025-59389) allows network-adjacent attackers to execute arbitrary code by bypassing the authentication mechanism, despite authentication normally being required. This high-severity issue (CVSS 8.0) gives attackers complete control over affected systems. Security teams should immediately patch QNAP TS-453E devices and restrict network access to these systems until updates are available.