Code injection

2024-02-0804:15:00

PRIOn knowledge base

www.prio-n.com

liferay portal

code injection

vulnerability

user impersonation

wysiwyg editor

remote authenticated users

6.8 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

19.5%

JSON

In Liferay Portal 7.2.0 through 7.4.1, and older unsupported versions, and Liferay DXP 7.3 before service pack 3, 7.2 before fix pack 15, and older unsupported versions the doAsUserId URL parameter may get leaked when creating linked content using the WYSIWYG editor and while impersonating a user. This may allow remote authenticated users to impersonate a user after accessing the linked content.

CPENameOperatorVersion
dxpeq7.2 fixpack2
dxpeq7.2 fixpack3
dxpeq7.2 fixpack4
dxpeq7.2 fixpack5
dxpeq7.2 fixpack1
dxpeq7.2
dxpeq7.2 fixpack6
dxpeq7.2 fixpack7
dxpeq7.2 fixpack8
dxpeq7.2 fixpack9

Name	Operator	Version
dxp	eq	7.2 fixpack2
dxp	eq	7.2 fixpack3
dxp	eq	7.2 fixpack4
dxp	eq	7.2 fixpack5
dxp	eq	7.2 fixpack1
dxp	eq	7.2
dxp	eq	7.2 fixpack6
dxp	eq	7.2 fixpack7
dxp	eq	7.2 fixpack8
dxp	eq	7.2 fixpack9