Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
montala resourcespace 9.6 vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2021-41951
ResourceSpace prior to 9.6 rev 18290 is affected by a reflected Cross-Site Scripting vulnerability in plugins/wordpress_sso/pages/index.php via the wordpress_user parameter. If an attacker is able to persuade a victim to visit a crafted URL, malicious JavaScript content may be ex...
Montala Resourcespace
Montala Resourcespace 9.6
9.8
CVSSv3
CVE-2021-41765
A SQL injection issue in pages/edit_fields/9_ajax/add_keyword.php of ResourceSpace 9.5 and 9.6 < rev 18274 allows remote unauthenticated malicious users to execute arbitrary SQL commands via the k parameter. This allows malicious users to uncover the full contents of the Resou...
Montala Resourcespace 9.5
Montala Resourcespace 9.6
9.1
CVSSv3
CVE-2021-41950
A directory traversal issue in ResourceSpace 9.6 prior to 9.6 rev 18277 allows remote unauthenticated malicious users to delete arbitrary files on the ResourceSpace server via the provider and variant parameters in pages/ajax/tiles.php. Attackers can delete configuration or sourc...
Montala Resourcespace 9.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started