Lucene search
+L

CVE-2021-33325

🗓️ 03 Aug 2021 19:15:08Reported by [email protected]Type 
nvd
 nvd
🔗 web.nvd.nist.gov👁 23 Views

The Portal Workflow module in Liferay Portal 7.3.2 and earlier, and Liferay DXP 7.0 before fix pack 93, 7.1 before fix pack 19, and 7.2 before fix pack 7, stores user's clear text passwords in the database if workflow is enabled for user creation, allowing attackers to obtain passwords

Related
Detection
Refs
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2021-33325
3 Aug 202119:15
attackerkb
CNNVD
Liferay Portal 和 Liferay DXP 安全漏洞
3 Aug 202100:00
cnnvd
CNVD
Liferay Portal and Liferay DXP have unspecified vulnerabilities (CNVD-2021-62968)
5 Aug 202100:00
cnvd
CVE
CVE-2021-33325
3 Aug 202118:33
cve
Cvelist
CVE-2021-33325
3 Aug 202118:33
cvelist
EUVD
EUVD-2021-20034
7 Oct 202500:30
euvd
Github Security Blog
Liferay Portal and Liferay DXP Stores User Passwords in Cleartext
24 May 202219:09
github
OSV
GHSA-6C88-GVXW-F5HG Liferay Portal and Liferay DXP Stores User Passwords in Cleartext
24 May 202219:09
osv
Prion
Default credentials
3 Aug 202119:15
prion
RedhatCVE
CVE-2021-33325
9 Jan 202611:28
redhatcve
Rows per page
NVD
Node
OR

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation