{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2025-61190", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-03-30T14:54:16.832Z", "dateReserved": "2025-09-26T00:00:00.000Z", "datePublished": "2026-03-27T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-27T14:30:17.430Z"}, "descriptions": [{"lang": "en", "value": "A Reflected Cross-Site Scripting (XSS) vulnerability has been identified in DSpace JSPUI 6.5 within the search/discover filtering functionality. The vulnerability exists due to improper sanitization of user-supplied input via the filter_type_1 parameter."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "http://dspace.com"}, {"url": "http://lyrasis.com"}, {"url": "https://gist.github.com/MerttTuran/9cf7de549749fe3ef7ce08d65e3540bd"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-79", "lang": "en", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "references": [{"url": "https://gist.github.com/MerttTuran/9cf7de549749fe3ef7ce08d65e3540bd", "tags": ["exploit"]}], "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-03-30T14:49:32.062186Z", "id": "CVE-2025-61190", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-30T14:54:16.832Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2025-61190", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-30T14:49:32.062186Z"}}}], "references": [{"url": "https://gist.github.com/MerttTuran/9cf7de549749fe3ef7ce08d65e3540bd", "tags": ["exploit"]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-30T14:50:27.122Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "http://dspace.com"}, {"url": "http://lyrasis.com"}, {"url": "https://gist.github.com/MerttTuran/9cf7de549749fe3ef7ce08d65e3540bd"}], "descriptions": [{"lang": "en", "value": "A Reflected Cross-Site Scripting (XSS) vulnerability has been identified in DSpace JSPUI 6.5 within the search/discover filtering functionality. The vulnerability exists due to improper sanitization of user-supplied input via the filter_type_1 parameter."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-27T14:30:17.430Z"}}}, "cveMetadata": {"cveId": "CVE-2025-61190", "state": "PUBLISHED", "dateUpdated": "2026-03-30T14:54:16.832Z", "dateReserved": "2025-09-26T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-03-27T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:lyrasis:dspace:6.5:*:*:*:*:*:*:*", "matchCriteriaId": "6546A606-1253-4B5A-917B-22A2CA1EBD7F", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A Reflected Cross-Site Scripting (XSS) vulnerability has been identified in DSpace JSPUI 6.5 within the search/discover filtering functionality. The vulnerability exists due to improper sanitization of user-supplied input via the filter_type_1 parameter."}], "id": "CVE-2025-61190", "lastModified": "2026-03-31T21:11:17.520", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-03-27T15:16:45.750", "references": [{"source": "cve@mitre.org", "tags": ["Product"], "url": "http://dspace.com"}, {"source": "cve@mitre.org", "tags": ["Product", "Broken Link"], "url": "http://lyrasis.com"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://gist.github.com/MerttTuran/9cf7de549749fe3ef7ce08d65e3540bd"}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "tags": ["Exploit", "Third Party Advisory"], "url": "https://gist.github.com/MerttTuran/9cf7de549749fe3ef7ce08d65e3540bd"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "6.5"}}], "enrichment": {"confidence": 80.0, "confidence_source": "inferred", "scores": [{"score": 80.0, "source": "inferred"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "jspui", "vendor": "dspace"}], "analysis": {"en": {"generated_at": "2026-04-01T07:01:00.242319+00:00", "value": {"mitigation_remediation": ["Verify that the DSpace installation is version 6.5 and determine whether the environment exposes the search filtering feature.", "Check Lyrasis or DSpace security advisories and release notes for any patch, fix, or update related to the JSPUI search filtering on version 6.5.", "If a vendor patch is publicly available, apply it as soon as possible following the vendor\u2019s deployment guidance.", "In the absence of a released patch, implement server\u2011side input validation or output encoding for the filter_type_1 parameter to block JavaScript injection.", "As an interim mitigation, disable the search filtering capability if the system allows it to be turned off until a formal patch is released.", "Continuously monitor vendor announcements and community forums for updates, and ensure the system is updated once a fix becomes available."], "summary": {"action": "Monitor", "impact": "Reflected XSS"}, "threat_synthesis": {"affected_systems": "Any installation of Lyrasis DSpace 6.5 that exposes the JSPUI search/discover page with filtering capabilities is affected. The vulnerability resides in the default JSPUI component and does not require modification to the repository content or creation of special accounts. Users who load the search page with a crafted filter_type_1 value will be vulnerable.", "description_and_impact": "The vulnerability is a reflected cross\u2011site scripting flaw in the DSpace JSPUI search filtering feature of Lyrasis DSpace 6.5. The flaw arises because the filter_type_1 parameter is not properly sanitized, allowing an attacker to inject JavaScript that executes in the victim\u2019s browser when the search page is rendered. This can enable session hijacking, credential theft, or other malicious activities that compromise the confidentiality of user data. The weakness is a classic reflected XSS, classically identified as CWE\u201179.", "risk_and_exploitability": "With a CVSS base score of 6.1 the issue is classified as medium severity. An EPSS score of less than 1\u202f% indicates a low likelihood of exploitation in the wild, and the vulnerability is not listed in the CISA KEV catalog. The attack vector is inferred to be remote: an attacker can craft a malicious URL containing a malicious filter_type_1 value, entice a target user to visit it, and achieve client\u2011side code execution without authentication or elevated privileges."}}}}, "created": "2026-03-27T15:47:17.006326+00:00", "updated": "2026-04-02T07:55:59.672062+00:00", "vendors": ["dspace", "dspace$PRODUCT$jspui"]}