Lucene search
MitreCVELIST:CVE-2021-38264HistoryMar 02, 2022 - 11:06 p.m.
CVE-2021-38264
2022-03-0223:06:32
mitre
www.cve.org
4
cross-site scripting
liferay portal
remote attackers
web script
html
management toolbar
keywords parameter
incomplete fix
EPSS
0.001
Percentile
45.7%
Cross-site scripting (XSS) vulnerability in the Frontend Taglib module in Liferay Portal 7.4.0 and 7.4.1 allows remote attackers to inject arbitrary web script or HTML into the management toolbar search via the keywords parameter. This issue is caused by an incomplete fix in CVE-2021-35463.
Related
osv
osv
CVE-2021-38264
2022-03-03 00:15:07
CVE-2021-35463
2021-08-04 14:15:08
cve
cve
CVE-2021-38264
2022-03-03 00:15:07
CVE-2021-35463
2021-08-04 14:15:08
prion
prion
Cross site scripting
2022-03-03 00:15:00
Cross site scripting
2021-08-04 14:15:00
nvd
nvd
CVE-2021-38264
2022-03-03 00:15:07
CVE-2021-35463
2021-08-04 14:15:08
cvelist
cvelist
CVE-2021-35463
2021-08-04 13:21:32
cnvd
cnvd
Liferay Portal Cross-Site Scripting Vulnerability (CNVD-2021-62963)
2021-08-09 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2022-03-07 10:18:27