2 matches found
Liferay Portal License Manager Detected
The target Liferay portal instance exposes information about the license state and the server. An unauthenticated attacked could leverage these information, such as server internal IP addresse and hostname, liferay version and license owner to conduct further attacks. No source data...
PT-2024-13188 · Liferay · Liferay Dxp
Name of the Vulnerable Software and Affected Versions: Liferay DXP versions 7.4 GA through update 92 Liferay DXP 2023.Q3 before patch 6 Description: The issue allows remote attackers to redirect users to arbitrary external URLs via the com liferay adaptive media web portlet AMPortlet redirect...