Lucene search

K

MitreCVELIST:CVE-2022-28982

HistorySep 21, 2022 - 11:57 p.m.

CVE-2022-28982

2022-09-2123:57:41

mitre

www.cve.org

0.001 Low

EPSS

Percentile

33.6%

A cross-site scripting (XSS) vulnerability in Liferay Portal v7.3.3 through v7.4.2 and Liferay DXP v7.3 before service pack 3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name of a tag.

References

liferay.com

portal.liferay.dev/learn/security/known-vulnerabilities/-/asset_publisher/HbL5mxmVrnXW/content/cve-2022-28982-reflected-xss-with-tag-name-in-%253Cliferay-asset-asset-tags-selector%253E

0.001 Low

EPSS

Percentile

33.6%

Related for CVELIST:CVE-2022-28982

nvd1 cve1 prion1