Maven/org.dspace:dspace-jspui — 5 CVEs

HIGH8.2CVE-2022-31194JSPUI vulnerable to path traversal in submission (resumable) upload

>= 4.0, < 5.11

HIGH7.1CVE-2022-31193JSPUI's controlled vocabulary feature vulnerable to Open Redirect before v6.4 and v5.11

>= 4.0, < 5.11

HIGH7.1CVE-2022-31192JSPUI Possible Cross Site Scripting in "Request a Copy" Feature

>= 5.0, < 5.11

HIGH7.1JSPUI spellcheck and autocomplete tools vulnerable to Cross Site Scripting

>= 4.0, < 5.11

MEDIUM5.3JSPUI's "Internal System Error" page prints exceptions and stack traces without sanitization

>= 4.0, < 6.4

pkg:Maven/org.dspace:dspace-jspui