CVE-2022-31191 – DSpace open source software is a repository application which provides durable access to d …

1 August 2022

Vuln ID: CVE-2022-31191

Published: 2022-08-01 21:15:13Z

Description: DSpace open source software is a repository application which provides durable access to digital resources. dspace-jspui is a UI component for DSpace. The JSPUI spellcheck "Did you mean" HTML escapes the data-spell attribute in the link, but not the actual displayed text. Similarly, the JSPUI autocomplete HTML does not properly escape text passed to it. Both are vulnerable to XSS. This vulnerability only impacts the JSPUI. Users are advised to upgrade. There are no known workarounds for this issue.

Source: NVD.NIST.GOV

Date:

1 August 2022

Categorie(s):

NVD

Tag(s):

NVD

Dropzone AI nabs $16.85M for its automated breach investigation platform25 April 2024
Millions of IPs remain infected by USB worm years after its creators left it for dead25 April 2024
What is ThreatLocker Cybersecurity Used For & How to Protect Your Digital Future?25 April 2024
Zombie worm continues to infect millions of IPs years after it was left for dead25 April 2024
How to Avoid Romance Scams 25 April 2024