Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:26 a.m.10 views

CVE-2021-33339

Cross-site scripting XSS vulnerability in the Fragment module in Liferay Portal 7.2.1 through 7.3.4, and Liferay DXP 7.2 before fix pack 9 allows remote attackers to inject arbitrary web script or HTML via the comliferaysiteadminwebportletSiteAdminPortletname parameter...

4.8CVSS5.9AI score0.00669EPSS
Exploits0References1
OSV
OSV
added 2021/08/04 1:15 p.m.13 views

CVE-2021-33339

Cross-site scripting XSS vulnerability in the Fragment module in Liferay Portal 7.2.1 through 7.3.4, and Liferay DXP 7.2 before fix pack 9 allows remote attackers to inject arbitrary web script or HTML via the comliferaysiteadminwebportletSiteAdminPortletname parameter...

4.8CVSS5.9AI score
Exploits0References2
Cvelist
Cvelist
added 2021/08/04 12:48 p.m.35 views

CVE-2021-33339

Cross-site scripting XSS vulnerability in the Fragment module in Liferay Portal 7.2.1 through 7.3.4, and Liferay DXP 7.2 before fix pack 9 allows remote attackers to inject arbitrary web script or HTML via the comliferaysiteadminwebportletSiteAdminPortletname parameter...

5.3AI score0.00669EPSS
Exploits0References2
CVE
CVE
added 2021/08/04 12:48 p.m.90 views

CVE-2021-33339

CVE-2021-33339 is a cross-site scripting (XSS) vulnerability affecting Liferay Portal 7.2.1–7.3.4 and Liferay DXP 7.2 prior to fix pack 9. The issue is triggered via the _com_liferay_site_admin_web_portlet_SiteAdminPortlet_name parameter in the Fragment module, enabling remote attackers to inject...

4.8CVSS5AI score0.00669EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder