CVE-2025-61190 PUBLISHED

Assigner: mitre
Reserved: 26.09.2025 Published: 27.03.2026 Updated: 27.03.2026

A Reflected Cross-Site Scripting (XSS) vulnerability has been identified in DSpace JSPUI 6.5 within the search/discover filtering functionality. The vulnerability exists due to improper sanitization of user-supplied input via the filter_type_1 parameter.

Product Status

Vendor	n/a
Product	n/a
Versions	Version n/a is affected

References

http://dspace.com
http://lyrasis.com
https://gist.github.com/MerttTuran/9cf7de549749fe3ef7ce08d65e3540bd

Problem Types

n/a text