Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-7438

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.01232EPSS
Exploits0References5
OSV
OSV
added 2022/01/28 12:15 p.m.8 views

CVE-2020-28885

Liferay Portal Server tested on 7.3.5 GA6, 7.2.0 GA1 is affected by OS Command Injection. An administrator user can inject commands through the Gogo Shell module to execute any OS command on the Liferay Portal Sever. NOTE: The developer disputes this as a vulnerability since it is a feature for...

7.2CVSS7.5AI score
Exploits0References1
OSV
OSV
added 2022/01/28 12:15 p.m.8 views

CVE-2020-28884

Liferay Portal Server tested on 7.3.5 GA6, 7.2.0 GA1 is affected by OS Command Injection. An administrator user can inject Groovy script to execute any OS command on the Liferay Portal Sever. NOTE: The developer disputes this as a vulnerability since it is a feature for administrators to run groo...

7.2CVSS7.2AI score
Exploits0References2
Cvelist
Cvelist
added 2022/01/28 11:17 a.m.20 views

CVE-2020-28885

Liferay Portal Server tested on 7.3.5 GA6, 7.2.0 GA1 is affected by OS Command Injection. An administrator user can inject commands through the Gogo Shell module to execute any OS command on the Liferay Portal Sever. NOTE: The developer disputes this as a vulnerability since it is a feature for...

7.4AI score0.02147EPSS
Exploits0References1
CVE
CVE
added 2022/01/28 11:17 a.m.76 views

CVE-2020-28885

CVE-2020-28885 affects Liferay Portal Server 7.3.5 GA6 and 7.2.0 GA1. An administrator can inject OS commands via the Gogo Shell module, enabling execution of arbitrary OS commands on the server. Documented impact includes high confidentiality, integrity, and availability risk. Some sources note ...

9CVSS7.3AI score0.02147EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/01/28 12:0 a.m.7 views

PT-2022-8910 · Liferay · Liferay Portal Server

Name of the Vulnerable Software and Affected Versions: Liferay Portal Server versions 7.2.0 GA1 through 7.3.5 GA6 Description: The issue allows an administrator user to inject commands through the Gogo Shell module, enabling the execution of any OS command on the Liferay Portal Server. This is...

9CVSS7.8AI score0.02147EPSS
Exploits0References7
Cvelist
Cvelist
added 2022/01/28 12:0 a.m.32 views

CVE-2020-28884

Liferay Portal Server tested on 7.3.5 GA6, 7.2.0 GA1 is affected by OS Command Injection. An administrator user can inject Groovy script to execute any OS command on the Liferay Portal Sever. NOTE: The developer disputes this as a vulnerability since it is a feature for administrators to run groo...

7.3AI score0.02028EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/01/28 12:0 a.m.16 views

CVE-2020-28884

Liferay Portal Server tested on 7.3.5 GA6, 7.2.0 GA1 is affected by OS Command Injection. An administrator user can inject Groovy script to execute any OS command on the Liferay Portal Sever. NOTE: The developer disputes this as a vulnerability since it is a feature for administrators to run groo...

7.3AI score0.02028EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/01/28 12:0 a.m.9 views

PT-2022-8909 · Liferay · Liferay Portal Server

Name of the Vulnerable Software and Affected Versions: Liferay Portal Server versions 7.2.0 GA1 through 7.3.5 GA6 Description: The issue allows an administrator user to inject Groovy script, enabling the execution of any OS command on the Liferay Portal Server. This is disputed by the developer a...

9CVSS7.2AI score0.02028EPSS
Exploits0References8
CVE
CVE
added 2022/01/28 12:0 a.m.80 views

CVE-2020-28884

Liferay Portal Server versions 7.3.5 GA6 and 7.2.0 GA1 are affected by an OS command injection via Groovy Script execution. The underlying issue allows an administrator to inject Groovy scripts to run arbitrary OS commands on the Liferay Portal Server, requiring administrator privileges (PR:H) an...

9CVSS7.2AI score0.02028EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder