6 matches found
CVE-2015-3648
Directory traversal vulnerability in pages/setup.php in Montala Limited ResourceSpace before 7.2.6727 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the defaultlanguage parameter...
CVE-2015-3648
Directory traversal vulnerability in pages/setup.php in Montala Limited ResourceSpace before 7.2.6727 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the defaultlanguage parameter...
CVE-2015-3648
ResourceSpace (Montala Limited) is affected by a Local File Inclusion in pages/setup.php due to insufficient sanitization of the defaultlanguage parameter, allowing remote attackers to include and execute local files. The issue affects ResourceSpace up to version 7.2.6727 (vendor advisory referen...
Local PHP File Inclusion in ResourceSpace
Advisory ID: HTB23258 Product: ResourceSpace Vendor: Montala Limited Vulnerable Versions: 7.1.6513 and probably prior Tested Version: 7.1.6513 Advisory Publication: May 6, 2015 without technical details Vendor Notification: May 6, 2015 Vendor Patch: June 1, 2015 Public Disclosure: June 3, 2015...
ResourceSpace 7.1.6513 Local File Inclusion Vulnerability
ResourceSpace version 7.1.6513 suffers from a local file inclusion vulnerability. Product: ResourceSpace Vendor: Montala Limited Vulnerable Versions: 7.1.6513 and probably prior Tested Version: 7.1.6513 Advisory Publication: May 6, 2015 without technical details Vendor Notification: May 6, 2015...
ResourceSpace 7.1.6513 Local File Inclusion
Advisory ID: HTB23258 Product: ResourceSpace Vendor: Montala Limited Vulnerable Versions: 7.1.6513 and probably prior Tested Version: 7.1.6513 Advisory Publication: May 6, 2015 without technical details Vendor Notification: May 6, 2015 Vendor Patch: June 1, 2015 Public Disclosure: June 3, 2015...