Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
montala resourcespace 9.6 vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2021-41951
ResourceSpace prior to 9.6 rev 18290 is affected by a reflected Cross-Site Scripting vulnerability in plugins/wordpress_sso/pages/index.php via the wordpress_user parameter. If an attacker is able to persuade a victim to visit a crafted URL, malicious JavaScript content may be ex...
Montala Resourcespace
Montala Resourcespace 9.6
9.8
CVSSv3
CVE-2021-41765
A SQL injection issue in pages/edit_fields/9_ajax/add_keyword.php of ResourceSpace 9.5 and 9.6 < rev 18274 allows remote unauthenticated malicious users to execute arbitrary SQL commands via the k parameter. This allows malicious users to uncover the full contents of the Resou...
Montala Resourcespace 9.5
Montala Resourcespace 9.6
9.1
CVSSv3
CVE-2021-41950
A directory traversal issue in ResourceSpace 9.6 prior to 9.6 rev 18277 allows remote unauthenticated malicious users to delete arbitrary files on the ResourceSpace server via the provider and variant parameters in pages/ajax/tiles.php. Attackers can delete configuration or sourc...
Montala Resourcespace 9.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started