CVE-2016-10726

HIGH

Duraspace Dspace < 3.6 - Path Traversal

Title source: rule

Description

The XMLUI feature in DSpace before 3.6, 4.x before 4.5, and 5.x before 5.5 allows directory traversal via the themes/ path in an attack with two or more arbitrary characters and a colon before a pathname, as demonstrated by a themes/Reference/aa:etc/passwd URI.

Exploits (1)

nomisec WRITEUP

by shoucheng3 · poc

https://github.com/shoucheng3/DSpace__DSpace_CVE-2016-10726_4-4

View Code ZIP pw:eip

References (3)

[Third Party Advisory] https://github.com/DSpace/DSpace/releases/tag/dspace-5.5

[Patch, Vendor Advisory] https://jira.duraspace.org/browse/DS-3094

[Vendor Advisory] https://wiki.duraspace.org/display/DSDOC5x/Release+Notes

Scores

CVSS v3 7.5

EPSS 0.0027

EPSS Percentile 50.0%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-22

Status published

Products (2)

duraspace/dspace < 3.6

org.dspace/dspace-xmlui 4.0 - 4.5Maven

Published Jul 10, 2018

Tracked Since Feb 18, 2026