Lucene search
K

90 matches found

Packet Storm
Packet Storm
added 2019/02/04 12:0 a.m.55 views

ResourceSpace 8.6 SQL Injection

Exploit Title: ResourceSpace =8.6 'watchedsearches.php' SQL Injection Dork: intext:"Powered by ResourceSpace" Date: 2019-02-01 Exploit Author: dd [email protected] Vendor Homepage: https://www.resourcespace.com/ Software Link: https://www.resourcespace.com/get Version: Stable release: 8.6 Mino...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2019/02/04 12:0 a.m.136 views

ResourceSpace 8.6 - 'watched_searches.php' SQL Injection

Exploit Title: ResourceSpace =8.6 'watchedsearches.php' SQL Injection Dork: intext:"Powered by ResourceSpace" Date: 2019-02-01 Exploit Author: dd [email protected] Vendor Homepage: https://www.resourcespace.com/ Software Link: https://www.resourcespace.com/get Version: Stable release: 8.6 Mino...

7.4AI score
Exploits0
0day.today
0day.today
added 2019/01/28 12:0 a.m.56 views

ResourceSpace 8.6 - collection_edit.php SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: ResourceSpace &redirect=yes&ref=3620&submitted=true&name=PWNED&keywords=&copy=&save=%C2%A0%C2%A0Save%C2%A0%C2%A0'...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2019/01/28 12:0 a.m.131 views

ResourceSpace 8.6 - 'collection_edit.php' SQL Injection

Exploit Title: ResourceSpace &redirect=yes&ref=3620&submitted=true&name=PWNED&keywords=&copy=&save=%C2%A0%C2%A0Save%C2%A0%C2%A0'...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2019/01/28 12:0 a.m.38 views

ResourceSpace 8.6 - collection_edit.php SQL Injection

ResourceSpace 8.6 - collectionedit.php SQL Injection Exploit Title: ResourceSpace &redirect=yes&ref=3620&submitted=true&name=PWNED&keywords=&copy=&save=%C2%A0%C2%A0Save%C2%A0%C2%A0'...

8.6AI score
Exploits0
Packet Storm
Packet Storm
added 2019/01/28 12:0 a.m.84 views

ResourceSpace 8.6 SQL Injection

Exploit Title: ResourceSpace &redirect=yes&ref=3620&submitted=true&name=PWNED&keywords=&copy=&save=%C2%A0%C2%A0Save%C2%A0%C2%A0'...

7.4AI score
Exploits0
NVD
NVD
added 2015/09/11 4:59 p.m.14 views

CVE-2015-6915

SQL injection vulnerability in Montala Limited ResourceSpace 7.3.7009 and earlier allows remote attackers to execute arbitrary SQL commands via the "user" cookie to plugins/feedback/pages/feedback.php...

7.5CVSS8.4AI score0.0184EPSS
Exploits1References1
Prion
Prion
added 2015/09/11 4:59 p.m.13 views

Sql injection

SQL injection vulnerability in Montala Limited ResourceSpace 7.3.7009 and earlier allows remote attackers to execute arbitrary SQL commands via the "user" cookie to plugins/feedback/pages/feedback.php...

7.5CVSS9.1AI score0.0184EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2015/09/11 4:0 p.m.20 views

CVE-2015-6915

SQL injection vulnerability in Montala Limited ResourceSpace 7.3.7009 and earlier allows remote attackers to execute arbitrary SQL commands via the "user" cookie to plugins/feedback/pages/feedback.php...

8.4AI score0.0184EPSS
Exploits1References1
CVE
CVE
added 2015/09/11 4:0 p.m.40 views

CVE-2015-6915

The CVE-2015-6915 entry concerns Montala Limited ResourceSpace (open source DAM) up to version 7.3.7009 and earlier. The vulnerability is a SQL injection in the plugins/feedback/pages/feedback.php handler, exploitable via the "user" cookie. This is a server-side issue that allows remote attackers...

7.5CVSS8.7AI score0.0184EPSS
Exploits1References1Affected Software1
0day.today
0day.today
added 2015/08/25 12:0 a.m.30 views

ResourceSpace CMS 7.3.7009 SQL Injection Vulnerability

ResourceSpace CMS versions 7.3.7009 and below suffer from a remote SQL injection vulnerability. Title: Blind boolean sql injection vulnerability in ResourceSpace CMS Author: William F. Reyor III Contact: email protected Published: August 22 2015 Vendor: Montala Limited Vendor url:...

8.1AI score
Exploits0
Packet Storm
Packet Storm
added 2015/08/25 12:0 a.m.22 views

ResourceSpace CMS 7.3.7009 SQL Injection

Title: Blind boolean sql injection vulnerability in ResourceSpace CMS Author: William F. Reyor III Contact: [email protected] Published: August 22 2015 Vendor: Montala Limited Vendor url: www.resourcespace.org Software: ResourceSpace Digital Asset Management Software Versions: 7.3.7009 and pri...

7.4AI score
Exploits0
NVD
NVD
added 2015/06/09 2:59 p.m.30 views

CVE-2015-3648

Directory traversal vulnerability in pages/setup.php in Montala Limited ResourceSpace before 7.2.6727 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the defaultlanguage parameter...

7.5CVSS7AI score0.08083EPSS
Exploits3References5
Prion
Prion
added 2015/06/09 2:59 p.m.17 views

Directory traversal

Directory traversal vulnerability in pages/setup.php in Montala Limited ResourceSpace before 7.2.6727 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the defaultlanguage parameter...

7.5CVSS7.5AI score0.08083EPSS
Exploits3References5Affected Software1
CVE
CVE
added 2015/06/09 2:0 p.m.151 views

CVE-2015-3648

ResourceSpace (Montala Limited) is affected by a Local File Inclusion in pages/setup.php due to insufficient sanitization of the defaultlanguage parameter, allowing remote attackers to include and execute local files. The issue affects ResourceSpace up to version 7.2.6727 (vendor advisory referen...

7.5CVSS7.1AI score0.08083EPSS
Exploits3References5Affected Software1
Cvelist
Cvelist
added 2015/06/09 2:0 p.m.37 views

CVE-2015-3648

Directory traversal vulnerability in pages/setup.php in Montala Limited ResourceSpace before 7.2.6727 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the defaultlanguage parameter...

7AI score0.08083EPSS
Exploits3References5
securityvulns
securityvulns
added 2015/06/08 12:0 a.m.108 views

Local PHP File Inclusion in ResourceSpace

Advisory ID: HTB23258 Product: ResourceSpace Vendor: Montala Limited Vulnerable Versions: 7.1.6513 and probably prior Tested Version: 7.1.6513 Advisory Publication: May 6, 2015 without technical details Vendor Notification: May 6, 2015 Vendor Patch: June 1, 2015 Public Disclosure: June 3, 2015...

7.5CVSS6.5AI score0.08083EPSS
Exploits3
0day.today
0day.today
added 2015/06/04 12:0 a.m.65 views

ResourceSpace 7.1.6513 Local File Inclusion Vulnerability

ResourceSpace version 7.1.6513 suffers from a local file inclusion vulnerability. Product: ResourceSpace Vendor: Montala Limited Vulnerable Versions: 7.1.6513 and probably prior Tested Version: 7.1.6513 Advisory Publication: May 6, 2015 without technical details Vendor Notification: May 6, 2015...

7.5CVSS6.3AI score0.08083EPSS
Exploits3
CNVD
CNVD
added 2015/06/03 12:0 a.m.4 views

ResourceSpace Native PHP File Inclusion Vulnerability

ResourceSpace is an open source digital asset management solution. ResourceSpace has a local PHP file inclusion vulnerability. Due to the "defaultlanguage" HTTP GET parameter received from the user to include PHP files using the "include" PHP function before the "/pages/setup.php" script lack of...

7.5CVSS6.8AI score0.08083EPSS
Exploits3References1
Packet Storm
Packet Storm
added 2015/06/03 12:0 a.m.65 views

ResourceSpace 7.1.6513 Local File Inclusion

Advisory ID: HTB23258 Product: ResourceSpace Vendor: Montala Limited Vulnerable Versions: 7.1.6513 and probably prior Tested Version: 7.1.6513 Advisory Publication: May 6, 2015 without technical details Vendor Notification: May 6, 2015 Vendor Patch: June 1, 2015 Public Disclosure: June 3, 2015...

7.5CVSS6.6AI score0.08083EPSS
Exploits3
Rows per page
Query Builder