Lucene search
GoogleOSV:CVE-2022-38902HistoryOct 13, 2022 - 1:15 p.m.
CVE-2022-38902
2022-10-1313:15:10
Google
osv.dev
4
A Cross-site scripting (XSS) vulnerability in the Blog module - add new topic functionality in Liferay Digital Experience Platform 7.3.10 SP3 allows remote attackers to inject arbitrary JS script or HTML into the name field of newly created topic.
| CPE | Name | Operator | Version |
|---|---|---|---|
| liferay-portal | eq | 7.3.1-ga2 | |
| liferay-portal | eq | 7.3.0-ga1 | |
| liferay-portal | eq | 7.3.2-ga3 |
Related
prion
prion
Cross site scripting
2022-10-13 13:15:00
Cross site scripting
2022-10-19 02:15:00
cvelist
cvelist
CVE-2022-38901
2022-10-19 00:00:00
CVE-2022-38902
2022-10-13 00:00:00
cve
cve
CVE-2022-38902
2022-10-13 13:15:00
CVE-2022-38901
2022-10-19 02:15:00