CVE-2025-53621 | DSpace up to 7.6.3/8.1/9.0 Import xml external entity reference (GHSA-jjwr-5cfh-7xwh)

Inserito da Angelo Barbosa | Lug 15, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in DSpace up to 7.6.3/8.1/9.0. This issue affects some unknown processing of the component Import Handler. The manipulation leads to xml external entity reference.

The identification of this vulnerability is CVE-2025-53621. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-53621 | DSpace up to 7.6.3/8.1/9.0 Import xml external entity reference (GHSA-jjwr-5cfh-7xwh)

Post correlati

CVE-2024-3715 | Database for Contact Form 7, WPforms, Elementor Forms cross site scripting

CVE-2024-7982 | Registrations for the Events Calendar Plugin up to 2.12.3 on WordPress cross site scripting

CVE-2024-23222 | Apple visionOS up to 1.0.1 WebKit type confusion (HT214070)

CVE-2024-30537 | WPClever WPC Badge Management for WooCommerce Plugin up to 2.4.0 on WordPress authorization