2 matches found
GHSA-CVRJ-CW2F-25QW Liferay Portal Vulnerable to XSS via an Invalid portletId
XSS exists in Liferay Portal before 7.0 CE GA4 via an invalid portletId...
Liferay Portal CE Cross-Site Scripting Vulnerability (CNVD-2017-20984)
Liferay Portal is a J2EE-based portal solution from Liferay, Inc. The solution uses EJB as well as JMS and other technologies , and can be used as a Web publishing and sharing workspaces , enterprise collaboration platforms , social networks and so on. A cross-site scripting vulnerability exists ...