CVE-2022-31260
published 2022-07-17CVE-2022-31260: In Montala ResourceSpace through 9.8 before r19636, csv_export_results_metadata.php allows attackers to export collection metadata via a non-NULL k value.
PriorityP339medium6.5CVSS 3.1
AVNACLPRNUINSUCLILAN
EXPLOIT
EPSS
1.51%
71.2th percentile
In Montala ResourceSpace through 9.8 before r19636, csv_export_results_metadata.php allows attackers to export collection metadata via a non-NULL k value.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| montala | resourcespace | < 9.8 | 9.8 |
| montala | resourcespace | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Nuclei
ResourceSpace - Metadata Export
nuclei·CVSS 6.5
CVE-2022-31260 [MEDIUM] ResourceSpace - Metadata Export
ResourceSpace - Metadata Export
In Montala ResourceSpace through 9.8 before r19636, csv_export_results_metadata.php allows attackers to export collection metadata via a non-NULL k value.
Template:
id: CVE-2022-31260
info:
name: ResourceSpace - Metadata Export
author: ritikchaddha
severity: medium
description: |
In Montala ResourceSpace through 9.8 before r19636, csv_export_results_metadata.php allows attackers to export collection metadata via a non-NULL k value.
impact: |
Successful exploitation could lead to unauthorized access to sensitive metadata.
remediation: |
Apply the vendor-supplied patch or upgrade to the latest version to mitigate CVE-2022-31260.
reference:
- https://github.com/grymer/CVE/blob/master/CVE-2022-31260.md
- https://nvd.nist.gov/vuln/detail/CVE-2022-31260
classi
No writeups or analysis indexed.
CWE
Hidden Functionality
mitre_cwe
CWE-912 Hidden Functionality
CWE-912: Hidden Functionality
The product contains functionality that is not documented, not part of the specification, and not accessible through an interface or command sequence that is obvious to the product's users or administrators.
Hidden functionality can take many forms, such as intentionally malicious code, "Easter Eggs" that contain extraneous functionality such as games, developer-friendly shortcuts that reduce maintenance or support costs such as hard-coded accounts, etc. From a security perspective, even when the functionality is not intentionally malicious or damaging, it can increase the product's attack surface and expose additional weaknesses beyond what is already exposed by the intended functionality. Even if it is not easily accessible, the hidden functionality could
CWE
Missing Authentication for Critical Function
mitre_cwe
CWE-306 Missing Authentication for Critical Function
CWE-306: Missing Authentication for Critical Function
The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.
Modes of Introduction:
Phase: Architecture and Design
Note: OMISSION: This weakness is caused by missing a security tactic during the architecture and design phase.
Phase: Architecture and Design
Note: Developers sometimes perform authentication at the primary channel, but open up a secondary channel that is assumed to be private. For example, a login mechanism may be listening on one network port, but after successful authentication, it may open up a second port where it waits for the connection, but avoids authentication because it assumes that only the authenticated party will conne
2022-07-17
Published