5 matches found
CVE-2022-28982
A cross-site scripting XSS vulnerability in Liferay Portal v7.3.3 through v7.4.2 and Liferay DXP v7.3 before service pack 3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name of a tag...
CVE-2022-28982
creationtimestamp| type| source ---|---|--- 2022-09-22 07:11:51+00:00| seen| https://t.me/cibsecurity/50255...
CVE-2022-28982
A cross-site scripting XSS vulnerability in Liferay Portal v7.3.3 through v7.4.2 and Liferay DXP v7.3 before service pack 3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name of a tag...
CVE-2022-28982
A cross-site scripting XSS vulnerability in Liferay Portal v7.3.3 through v7.4.2 and Liferay DXP v7.3 before service pack 3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name of a tag...
CVE-2022-28982
Summary: CVE-2022-28982 is an XSS vulnerability in Liferay Portal 7.3.3–7.4.2 and Liferay DXP 7.3 before Service Pack 3. The flaw allows an attacker to inject a crafted payload into a tag name, enabling arbitrary web scripts/HTML execution on the client side. Affected products/components: Liferay...