org.dspace:dspace-xmlui (Maven) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the Maven package org.dspace:dspace-xmlui, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2016-10726 — CVSS 7.5 (high): The XMLUI feature in DSpace before 3.6, 4.x before 4.5, and 5.x before 5.5 allows directory traversal via the themes/ path in an attack…
CVE-2022-31190 — CVSS 5.3 (medium): DSpace open source software is a repository application which provides durable access to digital resources. dspace-xmlui is a UI component…