4 matches found
CVE-2023-40191
creationtimestamp| type| source ---|---|--- 2024-02-21 04:21:41+00:00| seen| https://t.me/ctinow/189168 2024-02-21 04:26:09+00:00| seen| https://t.me/ctinow/189176 2024-02-22 03:26:45+00:00| seen| https://t.me/arpsyndicate/3882 2025-01-28 23:09:42+00:00| published-proof-of-concept|...
CVE-2023-40191
Reflected cross-site scripting XSS vulnerability in the instance settings for Accounts in Liferay Portal 7.4.3.44 through 7.4.3.97, and Liferay DXP 2023.Q3 before patch 6, and 7.4 update 44 through 92 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected in...
CVE-2023-40191
CVE-2023-40191 – Reflected XSS in Liferay Portal/DXP: The vulnerability affects Liferay Portal 7.4.3.44–7.4.3.97 and Liferay DXP 2023.Q3 before patch 6, and 7.4 update 44–92. It allows remote attackers to inject arbitrary web script or HTML via the Blocked Email Domains field in Accounts > ins...
CVE-2023-40191
Reflected cross-site scripting XSS vulnerability in the instance settings for Accounts in Liferay Portal 7.4.3.44 through 7.4.3.97, and Liferay DXP 2023.Q3 before patch 6, and 7.4 update 44 through 92 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected in...