com.liferay:com.liferay.adaptive.media.blogs.item.selector.web (>=1.0.0 <=1.0.1) potentially affected by CVE-2025-62275 via com.liferay:com.liferay.blogs.item.selector.web (=2.0.0)

com.liferay:com.liferay.blogs.item.selector.web MAVEN version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on com.liferay:com.liferay.blogs.item.selector.web and may be impacted: - com.liferay:com.liferay.adaptive.media.blogs.item.selector.web...

Use of Web Browser Cache Containing Sensitive Information

Overview Affected versions of this package are vulnerable to Use of Web Browser Cache Containing Sensitive Information due to using an incorrect cache-control header. A local attacker can gain unauthorized access to previously downloaded files by retrieving them from the browser's cache...

Liferay Portal and DXP use an incorrect cache-control header

The Document Library and the Adaptive Media modules in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions uses an incorrect cache-control heade...

GHSA-6533-FHR2-F38H Liferay Portal and DXP use an incorrect cache-control header

The Document Library and the Adaptive Media modules in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions uses an incorrect cache-control heade...

com.liferay:com.liferay.adaptive.media.blogs.web (>=1.0.0 <=1.0.3), com.liferay:com.liferay.adaptive.media.document.library.web (>=1.0.0 <=1.0.3) potentially affected by CVE-2025-62276 via com.liferay:com.liferay.adaptive.media.web (=1.0.0)

com.liferay:com.liferay.adaptive.media.web MAVEN version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on com.liferay:com.liferay.adaptive.media.web and may be impacted: - com.liferay:com.liferay.adaptive.media.blogs.web =1.0.0, =1.0.0, =1.0.3...

CVE-2025-62276

The Document Library and the Adaptive Media modules in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions uses an incorrect cache-control heade...

CVE-2025-62276

The Document Library and the Adaptive Media modules in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions uses an incorrect cache-control heade...

CVE-2025-62276

The Document Library and the Adaptive Media modules in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions uses an incorrect cache-control heade...

CVE-2025-62276

The Document Library and the Adaptive Media modules in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions uses an incorrect cache-control heade...

PT-2025-44693

Name of the Vulnerable Software and Affected Versions Liferay Portal versions 7.4.0 through 7.4.3.111 Liferay DXP versions 2023.Q3.1 through 2023.Q4.10 Liferay Portal 7.4 GA through update 92 Description The Document Library and Adaptive Media modules are affected by an issue where an incorrect...

EUVD-2023-48664

Malicious code in bioql PyPI...

CVE-2023-44308

Open redirect vulnerability in adaptive media administration page in Liferay DXP 2023.Q3 before patch 6, and 7.4 GA through update 92 allows remote attackers to redirect users to arbitrary external URLs via the comliferayadaptivemediawebportletAMPortletredirect parameter...

Open Redirect

com.liferay.portal, release.dxp.bom is vulnerable to Open Redirect. The vulnerability is caused due to allowing user supplied input in URLs as a redirect target and not sanitizing the user supplied input in the adaptive media administration page. This allows remote attackers to redirect users to...

GHSA-3MRR-CW9Q-727M Liferay Vulnerable to Open Redirect via Adaptive Media Administration Page

Open redirect vulnerability in adaptive media administration page in Liferay DXP 2023.Q3 before patch 6, and 7.4 GA through update 92 allows remote attackers to redirect users to arbitrary external URLs via the comliferayadaptivemediawebportletAMPortletredirect parameter...

Liferay Vulnerable to Open Redirect via Adaptive Media Administration Page

Open redirect vulnerability in adaptive media administration page in Liferay DXP 2023.Q3 before patch 6, and 7.4 GA through update 92 allows remote attackers to redirect users to arbitrary external URLs via the comliferayadaptivemediawebportletAMPortletredirect parameter...

CVE-2023-44308

Open redirect vulnerability in adaptive media administration page in Liferay DXP 2023.Q3 before patch 6, and 7.4 GA through update 92 allows remote attackers to redirect users to arbitrary external URLs via the comliferayadaptivemediawebportletAMPortletredirect parameter...

Open redirect

Open redirect vulnerability in adaptive media administration page in Liferay DXP 2023.Q3 before patch 6, and 7.4 GA through update 92 allows remote attackers to redirect users to arbitrary external URLs via the comliferayadaptivemediawebportletAMPortletredirect parameter...

Liferay DXP Security Vulnerability

Liferay DXP is a suite of digital experience collaboration platforms from Liferay USA. A security vulnerability exists in Liferay DXP that stems from an open redirection vulnerability that allows remote attackers to redirect users to arbitrary external URLs via the...

PT-2024-13188 · Liferay · Liferay Dxp

Name of the Vulnerable Software and Affected Versions: Liferay DXP versions 7.4 GA through update 92 Liferay DXP 2023.Q3 before patch 6 Description: The issue allows remote attackers to redirect users to arbitrary external URLs via the com liferay adaptive media web portlet AMPortlet redirect...

October 2019 - What's New in Security?

The October 2019 Release includes enhancements to Akamai security products with many new and updated capabilities. Highlights and capabilities that our customers have been particularly excited about include: The Bot Intelligence Console provides greater visibility into the bot landscape, allowing...