7703 matches found
CVE-2025-60703
creationtimestamp| type| source ---|---|--- 2025-11-11 17:29:38+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2025-0358 2025-11-11 17:30:42+00:00| seen| https://www.thezdi.com/blog/2025/11/11/the-november-2025-security-update-review 2025-11-12 19:58:30+00:00| seen|...
CVE-2025-59505
creationtimestamp| type| source ---|---|--- 2025-11-11 17:29:38+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2025-0358 2025-11-11 17:30:42+00:00| seen| https://www.thezdi.com/blog/2025/11/11/the-november-2025-security-update-review 2025-11-12 06:33:03+00:00| seen|...
CVE-2025-60714
creationtimestamp| type| source ---|---|--- 2025-11-11 17:29:38+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2025-0358 2025-11-11 17:30:42+00:00| seen| https://www.thezdi.com/blog/2025/11/11/the-november-2025-security-update-review...
Redefine Trust with Web Bot Authentication
...
WordPress Follow My Blog Post plugin <= 2.3.9 - Sensitive Data Exposure vulnerability
Sensitive Data Exposure vulnerability discovered by Denver Jackson in WordPress Plugin Follow My Blog Post versions = 2.3.9...
How to Protect Personal Data in Today’s API Economy
...
AI Explainer: What Is Model Context Protocol?
...
Top 7 Companies Specializing in Product Discovery Phase in 2025
Finding the right partner is less about headcount and more about repeatable outcomes, which is why the profiles…...
Internet Connectivity Issues in Russia
...
8 Top Application Security Tools (2026 Edition)
The software revolution has redefined what’s possible in global business. Complex applications underpin e-commerce, healthcare, finance, transportation, and…...
CVE-2025-62275
Blogs in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions does not check permission of images in a blog entry, which allows remote attackers ...
EUVD-2025-37410
Blogs in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions does not check permission of images in a blog entry, which allows remote attackers ...
GHSA-XF7M-V66Q-76W8 Liferay Portal and DXP do not check permissions of images in a blog entry
Blogs in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions does not check permission of images in a blog entry, which allows remote attackers ...
Liferay Portal and DXP do not check permissions of images in a blog entry
Blogs in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions does not check permission of images in a blog entry, which allows remote attackers ...
CVE-2025-62275
Blogs in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions does not check permission of images in a blog entry, which allows remote attackers ...
CVE-2025-62275
CVE-2025-62275 affects Liferay Portal 7.4.0–7.4.3.111 and older unsupported versions, and Liferay DXP 2023.Q3–2023.Q4, where images in blog entries bypass permission checks via crafted URLs. The issue stems from missing permission verification in image access within BlogsItemSelectorViewDisplayCo...
CVE-2025-62275
Blogs in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions does not check permission of images in a blog entry, which allows remote attackers ...
PT-2025-44699
Name of the Vulnerable Software and Affected Versions Liferay Portal versions 7.4.0 through 7.4.3.111 Liferay DXP versions 2023.Q4.0 through 2023.Q4.10 Liferay DXP versions 2023.Q3.1 through 2023.Q3.10 Liferay Portal versions 7.4 GA through update 92 Description The application does not properly...
Liferay Portal和Liferay DXP 安全漏洞
Liferay Portal and Liferay DXP are both products of Liferay, Inc.Liferay Portal is a J2EE based portal solution. The solution uses technologies such as EJB as well as JMS and can be used as a Web publishing and sharing workspace, enterprise collaboration platform, social network, etc. Liferay DXP...
Friday Squid Blogging: Giant Squid at the Smithsonian
I can't believe that I haven't yet posted this picture of a giant squid at the Smithsonian. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Blog moderation policy...