HTTP: Montala Limited ResourceSpace user_functions.php SQL Injection
This signature detects attempts to exploit a known vulnerability against ResourceSpace by Montala Limited. A successful attack can lead to command injection and arbitrary code execution.
Extended Description
A SQL injection issue in pages/edit_fields/9_ajax/add_keyword.php of ResourceSpace 9.5 and 9.6 < rev 18274 allows remote unauthenticated attackers to execute arbitrary SQL commands via the k parameter. This allows attackers to uncover the full contents of the ResourceSpace database, including user session cookies. An attacker who gets an admin user session cookie can use the session cookie to execute arbitrary code on the server.
Affected Products
Montala resourcespace
References
CVE: CVE-2021-41765
Short Name
HTTP:SQL:INJ:MONTALA-RES-SPACE
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2021-41765 Injection Limited Montala ResourceSpace SQL user_functions.php
Release Date
02/08/2022
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3464
False Positive
Unknown
Vendors
Montala
CVSS Score
7.5