CVE-2021-33331

🗓️ 03 Aug 2021 20:43:55Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 80 Views

Open redirect vulnerability in Liferay Portal 7.0.0 through 7.3.1 & DXP 7.0 before fix pack 94, 7.1 before fix pack 19, 7.2 before fix pack 8, allows remote attackers to redirect users to arbitrary external URLs via the 'redirect' parameter

Reporter	Title	Published	Views	Family All 10
CNNVD	Liferay Portal 和 Liferay DXP 输入验证错误漏洞	3 Aug 202100:00	–	cnnvd
CNVD	Liferay Portal and Liferay DXP Open Redirect Vulnerability	5 Aug 202100:00	–	cnvd
Cvelist	CVE-2021-33331	3 Aug 202120:43	–	cvelist
EUVD	EUVD-2021-20039	7 Oct 202500:30	–	euvd
Github Security Blog	Liferay Portal and Liferay DXP Allows Arbitrary Redirect of Users to External URLs	24 May 202219:09	–	github
NVD	CVE-2021-33331	3 Aug 202121:15	–	nvd
OSV	GHSA-MJ8W-H522-JWM8 Liferay Portal and Liferay DXP Allows Arbitrary Redirect of Users to External URLs	24 May 202219:09	–	osv
Prion	Open redirect	3 Aug 202121:15	–	prion
RedhatCVE	CVE-2021-33331	9 Jan 202611:26	–	redhatcve
Veracode	Open Redirect	4 Aug 202114:15	–	veracode

NVD

Node

liferay digital_experience_platformMatch7.0-

liferay digital_experience_platformMatch7.0fix_pack_13

liferay digital_experience_platformMatch7.0fix_pack_14

liferay digital_experience_platformMatch7.0fix_pack_24

liferay digital_experience_platformMatch7.0fix_pack_25

liferay digital_experience_platformMatch7.0fix_pack_26

liferay digital_experience_platformMatch7.0fix_pack_27

liferay digital_experience_platformMatch7.0fix_pack_28

liferay digital_experience_platformMatch7.0fix_pack_3

liferay digital_experience_platformMatch7.0fix_pack_30

liferay digital_experience_platformMatch7.0fix_pack_33

liferay digital_experience_platformMatch7.0fix_pack_35

liferay digital_experience_platformMatch7.0fix_pack_36

liferay digital_experience_platformMatch7.0fix_pack_39

liferay digital_experience_platformMatch7.0fix_pack_40

liferay digital_experience_platformMatch7.0fix_pack_41

liferay digital_experience_platformMatch7.0fix_pack_42

liferay digital_experience_platformMatch7.0fix_pack_43

liferay digital_experience_platformMatch7.0fix_pack_44

liferay digital_experience_platformMatch7.0fix_pack_45

liferay digital_experience_platformMatch7.0fix_pack_46

liferay digital_experience_platformMatch7.0fix_pack_47

liferay digital_experience_platformMatch7.0fix_pack_48

liferay digital_experience_platformMatch7.0fix_pack_49

liferay digital_experience_platformMatch7.0fix_pack_50

liferay digital_experience_platformMatch7.0fix_pack_51

liferay digital_experience_platformMatch7.0fix_pack_52

liferay digital_experience_platformMatch7.0fix_pack_53

liferay digital_experience_platformMatch7.0fix_pack_54

liferay digital_experience_platformMatch7.0fix_pack_56

liferay digital_experience_platformMatch7.0fix_pack_57

liferay digital_experience_platformMatch7.0fix_pack_58

liferay digital_experience_platformMatch7.0fix_pack_59

liferay digital_experience_platformMatch7.0fix_pack_60

liferay digital_experience_platformMatch7.0fix_pack_61

liferay digital_experience_platformMatch7.0fix_pack_64

liferay digital_experience_platformMatch7.0fix_pack_65

liferay digital_experience_platformMatch7.0fix_pack_66

liferay digital_experience_platformMatch7.0fix_pack_67

liferay digital_experience_platformMatch7.0fix_pack_68

liferay digital_experience_platformMatch7.0fix_pack_69

liferay digital_experience_platformMatch7.0fix_pack_70

liferay digital_experience_platformMatch7.0fix_pack_71

liferay digital_experience_platformMatch7.0fix_pack_72

liferay digital_experience_platformMatch7.0fix_pack_73

liferay digital_experience_platformMatch7.0fix_pack_75

liferay digital_experience_platformMatch7.0fix_pack_76

liferay digital_experience_platformMatch7.0fix_pack_78

liferay digital_experience_platformMatch7.0fix_pack_79

liferay digital_experience_platformMatch7.0fix_pack_80

liferay digital_experience_platformMatch7.0fix_pack_81

liferay digital_experience_platformMatch7.0fix_pack_82

liferay digital_experience_platformMatch7.0fix_pack_83

liferay digital_experience_platformMatch7.0fix_pack_84

liferay digital_experience_platformMatch7.0fix_pack_85

liferay digital_experience_platformMatch7.0fix_pack_86

liferay digital_experience_platformMatch7.0fix_pack_87

liferay digital_experience_platformMatch7.0fix_pack_88

liferay digital_experience_platformMatch7.0fix_pack_89

liferay digital_experience_platformMatch7.0fix_pack_90

liferay digital_experience_platformMatch7.0fix_pack_91

liferay digital_experience_platformMatch7.0fix_pack_92

liferay digital_experience_platformMatch7.0fix_pack_93

liferay digital_experience_platformMatch7.1-

liferay digital_experience_platformMatch7.1fix_pack_1

liferay digital_experience_platformMatch7.1fix_pack_10

liferay digital_experience_platformMatch7.1fix_pack_11

liferay digital_experience_platformMatch7.1fix_pack_12

liferay digital_experience_platformMatch7.1fix_pack_13

liferay digital_experience_platformMatch7.1fix_pack_14

liferay digital_experience_platformMatch7.1fix_pack_15

liferay digital_experience_platformMatch7.1fix_pack_16

liferay digital_experience_platformMatch7.1fix_pack_17

liferay digital_experience_platformMatch7.1fix_pack_18

liferay digital_experience_platformMatch7.1fix_pack_2

liferay digital_experience_platformMatch7.1fix_pack_3

liferay digital_experience_platformMatch7.1fix_pack_4

liferay digital_experience_platformMatch7.1fix_pack_5

liferay digital_experience_platformMatch7.1fix_pack_6

liferay digital_experience_platformMatch7.1fix_pack_7

liferay digital_experience_platformMatch7.1fix_pack_8

liferay digital_experience_platformMatch7.1fix_pack_9

liferay digital_experience_platformMatch7.2-

liferay digital_experience_platformMatch7.2fix_pack_1

liferay digital_experience_platformMatch7.2fix_pack_2

liferay digital_experience_platformMatch7.2fix_pack_3

liferay digital_experience_platformMatch7.2fix_pack_4

liferay digital_experience_platformMatch7.2fix_pack_5

liferay digital_experience_platformMatch7.2fix_pack_6

liferay digital_experience_platformMatch7.2fix_pack_7

liferay liferay_portalRange7.0.0–7.3.2

Source	Link
issues	www.issues.liferay.com/browse/LPE-17022
portal	www.portal.liferay.dev/learn/security/known-vulnerabilities/-/asset_publisher/HbL5mxmVrnXW/content/id/120747627

13 May 2025 18:17Current

6.3Medium risk

Vulners AI Score6.3

CVSS 25.8

CVSS 3.16.1

EPSS0.00356

CWE-601