4 matches found
EUVD-2025-31770
Malicious code in bioql PyPI...
Liferay Portal Vulnerable to IDOR via audit events
Insecure Direct Object Reference IDOR vulnerability with audit events in Liferay Portal 7.4.0 through 7.4.3.117, and older unsupported versions, and Liferay DXP 2024.Q1.1 through 2024.Q1.5, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported...
CVE-2025-43827
Insecure Direct Object Reference IDOR vulnerability with audit events in Liferay Portal 7.4.0 through 7.4.3.117, and older unsupported versions, and Liferay DXP 2024.Q1.1 through 2024.Q1.5, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported...
CVE-2025-43827
CVE-2025-43827 affects Liferay Portal 7.4.0–7.4.3.117 and Liferay DXP 2024.Q1.1–2024.Q1.5, 2023.Q4.x, 2023.Q3.x, and 7.4 GA through update 92. The issue is an Insecure Direct Object Reference (IDOR) where improper access control on com_liferay_portal_security_audit_web_portlet_AuditPortlet_auditE...