EUVD-2024-0515

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Reflected XSS vulnerability in Liferay Portal 7.3.3 to 7.4.3.97 allows remote script injection.

Reporter	Title	Published	Views	Family All 14
Circl	CVE-2023-42496	21 Feb 202404:21	–	circl
CNNVD	Liferay Portal and Liferay DXP Security Vulnerabilities	21 Feb 202400:00	–	cnnvd
CVE	CVE-2023-42496	21 Feb 202402:21	–	cve
Cvelist	CVE-2023-42496	21 Feb 202402:21	–	cvelist
Github Security Blog	Liferay Portal and Liferay DXP vulnerable to reflected Cross-site Scripting	21 Feb 202403:30	–	github
NCSC	Vulnerabilities fixed in Liferay Portal and DXP	22 Feb 202400:00	–	ncsc
NVD	CVE-2023-42496	21 Feb 202403:15	–	nvd
OSV	CVE-2023-42496	21 Feb 202403:15	–	osv
OSV	GHSA-54PV-R62J-9QQC Liferay Portal and Liferay DXP vulnerable to reflected Cross-site Scripting	21 Feb 202403:30	–	osv
Prion	Cross site scripting	21 Feb 202403:15	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "cb65498b-6445-3f9b-8dd2-3f2ae06f2e7b",
        "vendor": {
          "name": "Liferay"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0343d567-748c-3f0c-af74-370d7fc9f0f1",
        "product": {
          "name": "DXP"
        },
        "product_version": "7.4.13 ≤7.4.13.u92"
      },
      {
        "id": "189a216f-e8d5-350a-a219-8bb34f3164ce",
        "product": {
          "name": "Portal"
        },
        "product_version": "7.3.3 ≤7.4.3.97"
      },
      {
        "id": "44482336-666f-3151-b890-728910c5d70b",
        "product": {
          "name": "DXP"
        },
        "product_version": "2023.q3.1 ≤2023.q3.5"
      },
      {
        "id": "47966ac7-de40-33cf-90b0-e9528b57eed5",
        "product": {
          "name": "DXP"
        },
        "product_version": "7.3.10 ≤7.3.10-dxp-33"
      }
    ]
  }
]

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2023-42496
github	www.github.com/liferay/liferay-portal
liferay	www.liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/cve-2023-42496

03 Oct 2025 20:07Current

9.2High risk

Vulners AI Score9.2

CVSS 3.16.1 - 9.6

EPSS0.0044

SSVC