Lucene search
GoogleOSV:CVE-2022-26593HistoryApr 19, 2022 - 1:15 p.m.
CVE-2022-26593
2022-04-1913:15:08
Google
osv.dev
2
Cross-site scripting (XSS) vulnerability in the Asset module’s asset categories selector in Liferay Portal 7.3.3 through 7.4.0, and Liferay DXP 7.3 before service pack 3 allows remote attackers to inject arbitrary web script or HTML via the name of a asset category.
| CPE | Name | Operator | Version |
|---|---|---|---|
| liferay-portal | eq | 7.3.4-ga5 | |
| liferay-portal | eq | 7.3.6-ga7 | |
| liferay-portal | eq | 7.3.3-ga4 | |
| liferay-portal | eq | test-fix-pack-base-7310 |
Related
cvelist
cvelist
CVE-2022-26593
2022-04-19 12:46:15
prion
prion
Cross site scripting
2022-04-19 13:15:00
osv
osv
BIT-liferay-2022-26593
2024-01-31 15:21:17
nvd
nvd
CVE-2022-26593
2022-04-19 13:15:08
cve
cve
CVE-2022-26593
2022-04-19 13:15:08