ResourceSpace is a digital asset management tool that enables users to organize their digital assets. a SQL injection vulnerability exists in pages/edit_fields/9_ajax/add_keyword.php in ResourceSpace. The vulnerability can be exploited by an attacker to execute arbitrary SQL commands via the k parameter, which can obtain the entire contents of the ResourceSpace database and execute arbitrary code on the server.