2 matches found
CVE-2015-6915
SQL injection vulnerability in Montala Limited ResourceSpace 7.3.7009 and earlier allows remote attackers to execute arbitrary SQL commands via the "user" cookie to plugins/feedback/pages/feedback.php...
CVE-2015-6915
The CVE-2015-6915 entry concerns Montala Limited ResourceSpace (open source DAM) up to version 7.3.7009 and earlier. The vulnerability is a SQL injection in the plugins/feedback/pages/feedback.php handler, exploitable via the "user" cookie. This is a server-side issue that allows remote attackers...