4 matches found
CVE-2021-29048
Cross-site scripting XSS vulnerability in the Layout module's page administration page in Liferay Portal 7.3.4, 7.3.5 and Liferay DXP 7.2 before fix pack 11 and 7.3 before fix pack 1 allows remote attackers to inject arbitrary web script or HTML via the...
CVE-2021-29048
Cross-site scripting XSS vulnerability in the Layout module's page administration page in Liferay Portal 7.3.4, 7.3.5 and Liferay DXP 7.2 before fix pack 11 and 7.3 before fix pack 1 allows remote attackers to inject arbitrary web script or HTML via the...
CVE-2021-29048
Cross-site scripting XSS vulnerability in the Layout module's page administration page in Liferay Portal 7.3.4, 7.3.5 and Liferay DXP 7.2 before fix pack 11 and 7.3 before fix pack 1 allows remote attackers to inject arbitrary web script or HTML via the...
CVE-2021-29048
CVE-2021-29048 is an XSS vulnerability in the Liferay Layout module, affecting Liferay Portal 7.3.4–7.3.5 and Liferay DXP 7.2 before fix pack 11, plus Liferay DXP 7.3 before fix pack 1. The issue arises in the page administration page via the parameter _com_liferay_layout_admin_web_portlet_GroupP...