Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
montala resourcespace 9.6 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-41951
ResourceSpace prior to 9.6 rev 18290 is affected by a reflected Cross-Site Scripting vulnerability in plugins/wordpress_sso/pages/index.php via the wordpress_user parameter. If an attacker is able to persuade a victim to visit a crafted URL, malicious JavaScript content may be ex...
Montala Resourcespace
Montala Resourcespace 9.6
7.5
CVSSv2
CVE-2021-41765
A SQL injection issue in pages/edit_fields/9_ajax/add_keyword.php of ResourceSpace 9.5 and 9.6 < rev 18274 allows remote unauthenticated malicious users to execute arbitrary SQL commands via the k parameter. This allows malicious users to uncover the full contents of the Resou...
Montala Resourcespace 9.5
Montala Resourcespace 9.6
6.4
CVSSv2
CVE-2021-41950
A directory traversal issue in ResourceSpace 9.6 prior to 9.6 rev 18277 allows remote unauthenticated malicious users to delete arbitrary files on the ResourceSpace server via the provider and variant parameters in pages/ajax/tiles.php. Attackers can delete configuration or sourc...
Montala Resourcespace 9.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started