EUVD-2012-6311

Malware in sbrugna...

EUVD-2022-45205

Malicious code in bioql PyPI...

CVE-2022-42119

Certain Liferay products are vulnerable to Cross Site Scripting XSS via the Commerce module. This affects Liferay Portal 7.3.5 through 7.4.2 and Liferay DXP 7.3 before update 8...

CVE-2014-9025

The default checkout completion rule in the commerceorder module in the Drupal Commerce module 7.x-1.x before 7.x-1.10 for Drupal uses the email address as the username for new accounts created at checkout, which allows remote attackers to obtain sensitive information via unspecified vectors...

Liferay Portal and Liferay DXP Vulnerable to XSS in the Commerce Module

Multiple stored cross-site scripting XSS vulnerabilities in the Commerce module before 4.0.35 from Liferay Portal 7.3.5 through 7.4.3.91, and Liferay DXP 7.3 update 33 and earlier, and 7.4 before update 92 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injecte...

GHSA-QP68-5V39-R869 Liferay Portal and Liferay DXP Vulnerable to XSS in the Commerce Module

Multiple stored cross-site scripting XSS vulnerabilities in the Commerce module before 4.0.35 from Liferay Portal 7.3.5 through 7.4.3.91, and Liferay DXP 7.3 update 33 and earlier, and 7.4 before update 92 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injecte...

PT-2023-28455 · Liferay · Liferay Dxp +1

Name of the Vulnerable Software and Affected Versions: Liferay Portal versions 7.3.5 through 7.4.3.91 Liferay DXP versions 7.3 update 33 and earlier, and 7.4 before update 92 Description: Multiple stored cross-site scripting XSS vulnerabilities in the Commerce module allow remote attackers to...

Liferay Portal and Liferay DXP Cross-Site Scripting Vulnerabilities

Liferay Portal and Liferay DXP are both products of Liferay Inc.Liferay Portal is a J2EE-based portal solution. The solution uses technologies such as EJB as well as JMS and can be used as a Web publishing and sharing workspace, enterprise collaboration platform, social network, etc. Liferay DXP ...

Liferay Portal and Liferay DXP Vulnerable to XSS via the Commerce Module

Certain Liferay products are vulnerable to Cross Site Scripting XSS via the Commerce module. This affects the Commerce module before 4.0.8 from Liferay Portal 7.3.5 through 7.4.2 and Liferay DXP 7.3 before update 8...

GHSA-WJFM-QXG2-Q679 Liferay Portal and Liferay DXP Vulnerable to XSS via the Commerce Module

Certain Liferay products are vulnerable to Cross Site Scripting XSS via the Commerce module. This affects the Commerce module before 4.0.8 from Liferay Portal 7.3.5 through 7.4.2 and Liferay DXP 7.3 before update 8...

CVE-2022-42119

Certain Liferay products are vulnerable to Cross Site Scripting XSS via the Commerce module. This affects Liferay Portal 7.3.5 through 7.4.2 and Liferay DXP 7.3 before update 8...

Cross site scripting

Certain Liferay products are vulnerable to Cross Site Scripting XSS via the Commerce module. This affects Liferay Portal 7.3.5 through 7.4.2 and Liferay DXP 7.3 before update 8...

CVE-2022-42119

Certain Liferay products are vulnerable to Cross Site Scripting XSS via the Commerce module. This affects Liferay Portal 7.3.5 through 7.4.2 and Liferay DXP 7.3 before update 8...

CVE-2022-42119

Certain Liferay products are vulnerable to Cross Site Scripting XSS via the Commerce module. This affects Liferay Portal 7.3.5 through 7.4.2 and Liferay DXP 7.3 before update 8...

PT-2022-26264 · Liferay · Liferay Dxp +1

Name of the Vulnerable Software and Affected Versions: Liferay Portal versions 7.3.5 through 7.4.2 Liferay DXP 7.3 before update 8 Description: Certain Liferay products are vulnerable to Cross Site Scripting XSS via the Commerce module. Recommendations: For Liferay Portal versions 7.3.5 through...

Liferay Portal和Liferay DXP 跨站脚本漏洞

Liferay Portal and Liferay DXP are both products of Liferay Inc.Liferay Portal is a J2EE-based portal solution. The solution uses technologies such as EJB as well as JMS and can be used as a Web publishing and sharing workspace, enterprise collaboration platform, social network, etc. Liferay DXP ...

DRUPAL-CONTRIB-2021-032

This module provides a system for building an ecommerce solution in their Drupal site. The module doesn't sufficiently verify access to profile data in certain circumstances. This vulnerability is mitigated by the fact that an attacker must have permission to perform the checkout operation...

[SA21604] Drupal E-commerce Module Script Insertion Vulnerabilities

---------------------------------------------------------------------- Hardcore Disassembler / Reverse Engineer Wanted! Want to work with IDA and BinDiff? Want to write PoC's and Exploits? Your nationality is not important. We will get you a work permit, find an apartment, and offer a relocation...