2 matches found
CVE-2021-29045
Cross-site scripting XSS vulnerability in the Redirect module's redirection administration page in Liferay Portal 7.3.2 through 7.3.5, and Liferay DXP 7.3 before fix pack 1 allows remote attackers to inject arbitrary web script or HTML via the...
CVE-2021-29045
The CVE describes a cross-site scripting (XSS) vulnerability in the Redirect module’s redirection administration page of Liferay Portal 7.3.2–7.3.5 and Liferay DXP 7.3 before fix pack 1. The issue arises from improper validation of the _com_liferay_redirect_web_internal_portlet_RedirectPortlet_de...