A SQL injection issue in pages/edit_fields/9_ajax/add_keyword.php of ResourceSpace 9.5 and 9.6 < rev 18274 allows remote unauthenticated attackers to execute arbitrary SQL commands via the k parameter. This allows attackers to uncover the full contents of the ResourceSpace database, including user session cookies. An attacker who gets an admin user session cookie can use the session cookie to execute arbitrary code on the server.
References
Link | Resource |
---|---|
http://svn.resourcespace.com/svn/rs/releases/9.6/pages/edit_fields/9_ajax/add_keyword.php | Broken Link Vendor Advisory |
https://www.horizon3.ai/multiple-vulnerabilities-in-resourcespace/ | Exploit Third Party Advisory |
http://svn.resourcespace.com/svn/rs/releases/9.6/pages/edit_fields/9_ajax/add_keyword.php | Broken Link Vendor Advisory |
https://www.horizon3.ai/multiple-vulnerabilities-in-resourcespace/ | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 06:26
Type | Values Removed | Values Added |
---|---|---|
References | () http://svn.resourcespace.com/svn/rs/releases/9.6/pages/edit_fields/9_ajax/add_keyword.php - Broken Link, Vendor Advisory | |
References | () https://www.horizon3.ai/multiple-vulnerabilities-in-resourcespace/ - Exploit, Third Party Advisory |
Information
Published : 2021-11-15 16:15
Updated : 2024-11-21 06:26
NVD link : CVE-2021-41765
Mitre link : CVE-2021-41765
CVE.ORG link : CVE-2021-41765
JSON object : View
Products Affected
montala
- resourcespace
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')