13 matches found
CVE-2026-46625 vulnerabilities
Vulnerabilities for packages: opensearch-dashboards, saf...
GHSA-PH9P-34F9-6G65 vulnerabilities
Vulnerabilities for packages: vitess, kubeflow-katib, opensearch-dashboards, renovate, py3-jupyterlab, pulumi, saf, prism, lerna, tensorflow-cpu-jupyter...
GHSA-QJX8-664M-686J vulnerabilities
Vulnerabilities for packages: opensearch-dashboards, saf...
CVE-2026-44705 vulnerabilities
Vulnerabilities for packages: vitess, kubeflow-katib, opensearch-dashboards, renovate, py3-jupyterlab, pulumi, saf, prism, lerna, tensorflow-cpu-jupyter...
CVE-2026-44705 vulnerabilities
Vulnerabilities for packages: kubeflow-katib, arangodb, renovate, langfuse-fips, opensearch-dashboards, wazuh-dashboard-fips, drupal, kibana, wazuh-dashboard, prism, opensearch-dashboards-fips, saf, homepage, vitess, authentik-fips, tensorflow-cpu-jupyter, langfuse, py3-jupyterlab, pulumi, lerna,...
CVE-2025-54371 vulnerabilities
Vulnerabilities for packages: kubeflow-centraldashboard, saf, lerna...
GHSA-9965-VMPH-33XX vulnerabilities
Vulnerabilities for packages: sqlpad, saf...
CVE-2025-56200 vulnerabilities
Vulnerabilities for packages: sqlpad, saf...
GHSA-9965-VMPH-33XX vulnerabilities
Vulnerabilities for packages: redisinsight, saf, sqlpad...
CVE-2025-56200 vulnerabilities
Vulnerabilities for packages: redisinsight, saf, sqlpad...
DSpace ItemImportService API Vulnerable to Path Traversal in Simple Archive Format Package Import
Impact ItemImportServiceImpl is vulnerable to a path traversal vulnerability. This means a malicious SAF simple archive format package could cause a file/directory to be created anywhere the Tomcat/DSpace user can write to on the server. However, this path traversal vulnerability is only possible...
Path Traversal
org.dspace:dspace-api is vulnerable to path traversal. A privileged attacker is able to create a file or a directory anywhere on the server within the user scope via a specifically crafted SAF package...
Path traversal
DSpace open source software is a repository application which provides durable access to digital resources. In affected versions the ItemImportServiceImpl is vulnerable to a path traversal vulnerability. This means a malicious SAF simple archive format package could cause a file/directory to be...