All Versions


DSpace Documentation


Page tree

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Table of Contents
maxLevel2
minLevel2

Changes in DSpace 3.5

This release includes the following JSPUI security fixes. All of these tickets require a valid JIRA account to view the details:

  • DS-2736 - Cross-site scripting (XSS injection) is possible in JSPUI Discovery search results/form
  • DS-2737 - Expression language injection (EL Injection) is possible in JSPUI search interface.

Changes in DSpace 3.4

This release  includes the following security fixes. All of these tickets require a valid JIRA account to view the details:

...