Lucene search
K

4 matches found

vulnersOsv
vulnersOsv
added 2022/05/17 3:5 a.m.7 views

au.com.permeance:liferay-clojure-integration (=0.1), com.liferay.maven.plugins:liferay-maven-plugin (>=6.0.2 <=6.0.6) +6 more potentially affected by CVE-2010-5327 via com.liferay.portal:portal-impl (>=5.2.3 <=6.2.1)

com.liferay.portal:portal-impl MAVEN version =5.2.3, =6.0.2, =6.1.2, =5.2.3, =2.4, =1.0, =2.0, =2.5 Source cves: CVE-2010-5327 Source advisory: OSV:GHSA-97GM-MCV6-CPHM...

8.8CVSS7.2AI score0.02733EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/05/17 3:5 a.m.8 views

au.com.permeance:liferay-clojure-integration (=0.1), br.com.thiagomoreira.liferay.plugins.bootstrap-jumbotron-app:bootstrap-jumbotron-app (>=1.0.0 <=1.0.1) +94 more potentially affected by CVE-2010-5327 via com.liferay.portal:portal-service (>=5.2.3 <=6.2.1)

com.liferay.portal:portal-service MAVEN version =5.2.3, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.2.0 - br.com.thiagomoreira.liferay.plugins.lorem-ipsum-button-app:hooks =1.0.0 - br.com.thiagomoreira.liferay.plugins.lorem-ipsum-button-app:lorem-ipsum-button-app =1.0.0 -...

8.8CVSS7.2AI score0.02733EPSS
Exploits0
Cvelist
Cvelist
added 2017/01/13 7:0 p.m.23 views

CVE-2010-5327

Liferay Portal through 6.2.10 allows remote authenticated users to execute arbitrary shell commands via a crafted Velocity template...

8.7AI score0.02733EPSS
Exploits0References6
CVE
CVE
added 2017/01/13 7:0 p.m.128 views

CVE-2010-5327

CVE-2010-5327 affects Liferay Portal up to version 6.2.10. The issue is a remote code execution via a crafted Velocity template, enabling remote authenticated users to execute arbitrary shell commands. The connected sources corroborate a velocity/template-based command injection in Liferay Portal...

8.8CVSS8.6AI score0.02733EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder