CVE-2015-3648
NUCLEIResourceSpace <7.2.6727 - Path Traversal
Title source: llmDescription
Directory traversal vulnerability in pages/setup.php in Montala Limited ResourceSpace before 7.2.6727 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the defaultlanguage parameter.
Nuclei Templates (1)
ResourceSpace - Local File inclusion
HIGHby pikpikcu
References (5)
Scores
EPSS
0.5168
EPSS Percentile
97.9%
Details
CWE
CWE-22
Status
published
Products (1)
montala/resourcespace
< 7.1.6513
Published
Jun 09, 2015
Tracked Since
Feb 18, 2026