Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

maven

org.dspace:dspace-api

maven

DSpace core data model and service APIs.

View on github.com · View on repo1.maven.org

Security Advisories for org.dspace:dspace-api in maven

Moderate
11 months ago

DSpace is vulnerable to Path Traversal attacks when importing packages using Simple Archive Format GSA_kwCzR0hTQS12aHZ4LTh4Z2MtOTl3Zs4ABKKq

maven org.dspace:dspace-api
Moderate
11 months ago

DSpace is vulnerable to XML External Entity injection during archive imports GSA_kwCzR0hTQS1qandyLTVjZmgtN3h3aM4ABKKp

maven org.dspace:dspace-api
Potential
Low
almost 2 years ago

DSpace Cross Site Scripting (XSS) via a deposited HTML/XML document GSA_kwCzR0hTQS05NGNjLXhqeHItcHd2Zs4AA9WR

maven org.dspace:dspace-server-webapp
High
almost 4 years ago

DSpace ItemImportService API Vulnerable to Path Traversal in Simple Archive Format Package Import GSA_kwCzR0hTQS04cm1oLTU1aDQtOTNoNc4AAt2l

maven org.dspace:dspace-api
Potential
High
almost 4 years ago

JSPUI vulnerable to path traversal in submission (resumable) upload GSA_kwCzR0hTQS1xcDVtLWMzbTktOHEycM4AAt2k

maven org.dspace:dspace-jspui
Potential
High
almost 4 years ago

JSPUI's controlled vocabulary feature vulnerable to Open Redirect before v6.4 and v5.11 GSA_kwCzR0hTQS03NjNqLXE3d3YtdmYzbc4AAt2j

maven org.dspace:dspace-jspui
Potential
High
almost 4 years ago

JSPUI Possible Cross Site Scripting in "Request a Copy" Feature GSA_kwCzR0hTQS00d204LWMydnYteHJwcc4AAt2i

maven org.dspace:dspace-jspui
Potential
High
almost 4 years ago

JSPUI spellcheck and autocomplete tools vulnerable to Cross Site Scripting GSA_kwCzR0hTQS1jNTU4LTVnZm0tcDJyOM4AAt2h

maven org.dspace:dspace-jspui
Potential
Moderate
almost 4 years ago

XMLUI's metadata of withdrawn Items is exposed to anonymous users GSA_kwCzR0hTQS03dzg1LXBwODYtcDRwcc4AAt2g

maven org.dspace:dspace-xmlui
Potential
Moderate
almost 4 years ago

JSPUI's "Internal System Error" page prints exceptions and stack traces without sanitization GSA_kwCzR0hTQS1jMmo3LTY2bTMtcjRmZs4AAt2f

maven org.dspace:dspace-jspui
High
over 4 years ago

Communities and collections administrators can escalate their privilege up to system administrator GSA_kwCzR0hTQS1jZjJqLXZmMzYtYzZ3OM0WxA

maven org.dspace:dspace-api
Potential
High
over 7 years ago

High severity vulnerability that affects org.dspace:dspace-xmlui MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRtOXItNWdxcC03ajgy

maven org.dspace:dspace-xmlui

Filter by Severity

High 7 Moderate 4 Low 1