2 matches found
CVE-2018-10795
Liferay 6.2.x and before has an FCKeditor configuration that allows an attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment via a browser/liferay/browser.html?Type= or...
CVE-2018-10795
CVE-2018-10795 affects Liferay 6.2.x and earlier. A misconfiguration in FCKeditor could allow an attacker to upload or transfer dangerous file types via the URIs browser.html?Type= or editor/filemanager/browser/liferay/browser.html, potentially enabling processing within the product’s environment...