2 matches found
CVE-2007-6055
Cross-site scripting XSS vulnerability in c/portal/login in Liferay Portal 4.1.0 and 4.1.1 allows remote attackers to inject arbitrary web script or HTML via the login parameter. NOTE: this issue reportedly exists because of a regression that followed a fix at an unspecified earlier date...
CVE-2007-6055
CVE-2007-6055 is a cross-site scripting (XSS) vulnerability affecting Liferay Portal 4.1.0 and 4.1.1, exploitable via the login parameter in c/portal/login. The issue arises from a regression after an earlier fix, as noted in the description. Connected documents provide corroborating context (e.g...