3 matches found
CVE-2021-33336
Cross-site scripting XSS vulnerability in the Journal module's add article menu in Liferay Portal 7.3.0 through 7.3.3, and Liferay DXP 7.1 fix pack 18, and 7.2 fix pack 5 through 7, allows remote attackers to inject arbitrary web script or HTML via the comliferayjournalwebportletJournalPortletnam...
CVE-2021-33336
CVE-2021-33336 is a documented cross-site scripting (XSS) vulnerability affecting the Journal module’s add article menu in Liferay Portal 7.3.0–7.3.3 and Liferay DXP 7.1 fix pack 18 and 7.2 fix packs 5–7. The issue allows remote attackers to inject arbitrary Web script or HTML via the parameter _...
CVE-2021-33336
Cross-site scripting XSS vulnerability in the Journal module's add article menu in Liferay Portal 7.3.0 through 7.3.3, and Liferay DXP 7.1 fix pack 18, and 7.2 fix pack 5 through 7, allows remote attackers to inject arbitrary web script or HTML via the comliferayjournalwebportletJournalPortletnam...