2 matches found
CVE-2008-0181
Cross-site scripting XSS vulnerability in the Admin portlet in Liferay Portal 4.3.6 allows remote authenticated users to inject arbitrary web script or HTML via the Shutdown message...
CVE-2008-0181
The CVE-2008-0181 issue affects Liferay Portal 4.3.6, where the Admin portlet’s Shutdown message fails to validate input, enabling remote authenticated users to inject arbitrary script/HTML. The vulnerability is an XSS in the Shutdown message display. The Red Hat/NVD entries corroborate the same ...