3 matches found
CVE-2022-28978
Stored cross-site scripting XSS vulnerability in the Site module's user membership administration page in Liferay Portal 7.0.1 through 7.4.1, and Liferay DXP 7.0 before fix pack 102, 7.1 before fix pack 26, 7.2 before fix pack 15, and 7.3 before service pack 3 allows remote attackers to inject...
CVE-2022-28978
The CVE-2022-28978 entry describes a stored XSS vulnerability in the Site module’s user membership administration page of Liferay Portal 7.0.1–7.4.1 and Liferay DXP 7.0 (before fix pack 102), 7.1 (before fix pack 26), 7.2 (before fix pack 15), and 7.3 (before service pack 3). Affects the ability ...
CVE-2022-28978
Stored cross-site scripting XSS vulnerability in the Site module's user membership administration page in Liferay Portal 7.0.1 through 7.4.1, and Liferay DXP 7.0 before fix pack 102, 7.1 before fix pack 26, 7.2 before fix pack 15, and 7.3 before service pack 3 allows remote attackers to inject...