org.dspace:dspace-api vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-49833Mediumorg.dspace:dspace-api: DSpace: Path Traversal is possible through LDN message generationCVE-2026-49830Mediumorg.dspace:dspace-api: DSpace: ORE resource URI does not validate scheme for non-web resourcesCVE-2026-49831Mediumorg.dspace:dspace-api: DSpace has a possible Path Traversal Vulnerability in its Curation Task Reporter output pathCVE-2026-49832Highorg.dspace:dspace-api: DSpace has possible Remote Code Execution (RCE) through Velocity Templates used by LDNCVE-2025-53622Mediumorg.dspace:dspace-api: DSpace is vulnerable to Path Traversal attacks when importing packages using Simple Archive FormatCVE-2025-53621Mediumorg.dspace:dspace-api: DSpace is vulnerable to XML External Entity injection during archive imports CVE-2022-31195Highorg.dspace:dspace-api: DSpace ItemImportService API Vulnerable to Path Traversal in Simple Archive Format Package ImportCVE-2021-41189Highorg.dspace:dspace-api: Communities and collections administrators can escalate their privilege up to system administrator

Stop the waste.
Protect your environment with Kodem.