Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-3754

Malware in sbrugna...

6.1CVSS6.3AI score0.00822EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-25583

Malicious code in bioql PyPI...

6.9CVSS6.4AI score0.00286EPSS
Exploits0References11
Veracode
Veracode
added 2025/09/12 11:13 a.m.6 views

User Enumeration

com.liferay, com.liferay.login.web is vulnerable to User Enumeration. The vulnerability is due to improper handling of account creation requests on the "create account" page, which allows an attacker to determine if a specific account exists in the application...

6.9CVSS6.9AI score0.00286EPSS
Exploits0References12Affected Software1
RedhatCVE
RedhatCVE
added 2025/08/24 4:6 p.m.5 views

CVE-2025-43751

User enumeration vulnerability in Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10 and 7.4 GA through update 92...

6.9CVSS6.5AI score0.00286EPSS
Exploits0References1
OSV
OSV
added 2025/08/22 6:31 p.m.5 views

GHSA-XWC5-Q44V-P6GG Liferay Portal User Enumeration Vulnerability via the Create Account Page

User enumeration vulnerability in Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10 and 7.4 GA through update 92...

6.9CVSS7.2AI score0.00286EPSS
Exploits0References12
Github Security Blog
Github Security Blog
added 2025/08/22 6:31 p.m.10 views

Liferay Portal User Enumeration Vulnerability via the Create Account Page

User enumeration vulnerability in Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10 and 7.4 GA through update 92...

6.9CVSS7.2AI score0.00286EPSS
Exploits0References12Affected Software1
NVD
NVD
added 2025/08/22 4:15 p.m.6 views

CVE-2025-43751

User enumeration vulnerability in Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10 and 7.4 GA through update 92...

6.9CVSS0.00286EPSS
Exploits0References1
OSV
OSV
added 2025/08/22 4:15 p.m.6 views

CVE-2025-43751

User enumeration vulnerability in Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10 and 7.4 GA through update 92...

5.3CVSS5.8AI score0.00286EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/22 3:58 p.m.10 views

CVE-2025-43751

User enumeration vulnerability in Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10 and 7.4 GA through update 92...

6.9CVSS0.00286EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/22 3:58 p.m.3 views

CVE-2025-43751

User enumeration vulnerability in Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10 and 7.4 GA through update 92...

6.9CVSS6.7AI score0.00286EPSS
Exploits0References1
CVE
CVE
added 2025/08/22 3:58 p.m.23 views

CVE-2025-43751

CVE-2025-43751 affects Liferay Portal 7.4.0–7.4.3.132 and Liferay DXP versions up to 2024.Q4.7 (also multiple earlier Qs and 7.4 GA through update 92). Root cause: the create account page allows remote attackers to determine whether a specific account exists, enabling user enumeration and potenti...

6.9CVSS6.7AI score0.00286EPSS
Exploits0References1Affected Software2
Positive Technologies
Positive Technologies
added 2025/08/22 12:0 a.m.6 views

PT-2025-34437

Name of the Vulnerable Software and Affected Versions: Liferay Portal versions 7.4.0 through 7.4.3.132 Liferay DXP versions 2023.Q4.0 through 2023.Q4.10 Liferay DXP versions 2023.Q3.1 through 2023.Q3.10 Liferay DXP versions 2024.Q1.1 through 2024.Q1.14 Liferay DXP versions 2024.Q2.0 through...

6.9CVSS6.5AI score0.00286EPSS
Exploits0References17
Vulnrichment
Vulnrichment
added 2024/09/09 4:0 p.m.16 views

CVE-2024-8604 SourceCodester Online Food Ordering System Create an Account Page index.php cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Online Food Ordering System 2.0. This affects an unknown part of the file index.php of the component Create an Account Page. The manipulation of the argument First Name/Last Name leads to cross site scripting. It is possib...

6.9CVSS6.3AI score0.00546EPSS
Exploits0References4
Openbugbounty
Openbugbounty
added 2018/01/29 3:13 a.m.12 views

tandra.com XSS vulnerability

Open Bug Bounty ID: OBB-549142 Description| Value ---|--- Affected Website:| tandra.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
Rows per page
Query Builder