CVE-2021-41765

A SQL injection issue in pages/edit_fields/9_ajax/add_keyword.php of ResourceSpace 9.5 and 9.6 < rev 18274 allows remote unauthenticated attackers to execute arbitrary SQL commands via the k parameter. This allows attackers to uncover the full contents of the ResourceSpace database, including user session cookies. An attacker who gets an admin user session cookie can use the session cookie to execute arbitrary code on the server.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:montala:resourcespace:9.5:*:*:*:*:*:*:*
cpe:2.3:a:montala:resourcespace:9.6:*:*:*:*:*:*:*

History

21 Nov 2024, 06:26

Type Values Removed Values Added
References () http://svn.resourcespace.com/svn/rs/releases/9.6/pages/edit_fields/9_ajax/add_keyword.php - Broken Link, Vendor Advisory () http://svn.resourcespace.com/svn/rs/releases/9.6/pages/edit_fields/9_ajax/add_keyword.php - Broken Link, Vendor Advisory
References () https://www.horizon3.ai/multiple-vulnerabilities-in-resourcespace/ - Exploit, Third Party Advisory () https://www.horizon3.ai/multiple-vulnerabilities-in-resourcespace/ - Exploit, Third Party Advisory

Information

Published : 2021-11-15 16:15

Updated : 2024-11-21 06:26


NVD link : CVE-2021-41765

Mitre link : CVE-2021-41765

CVE.ORG link : CVE-2021-41765


JSON object : View

Products Affected

montala

  • resourcespace
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')