2 matches found
CVE-2020-25476
creationtimestamp| type| source ---|---|--- 2021-01-07 20:40:56+00:00| seen| https://t.me/cibsecurity/21772...
CVE-2020-25476
CVE-2020-25476 affects Liferay CMS Portal versions 7.1.3 and 7.2.1 via a blind persistent XSS in the Calendar module’s handling of the username/lastname/surname fields in user profiles. The vulnerability allows an attacker to inject payloads that are reflected in the attacker’s own calendar and c...