Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2026/01/09 10:51 a.m.9 views

CVE-2022-42113

A Cross-site scripting XSS vulnerability in Document Library module in Liferay Portal 7.4.3.30 through 7.4.3.36, and Liferay DXP 7.4 update 30 through update 36 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter...

6.1CVSS5.9AI score0.00496EPSS
Exploits0References1
vulnersosv
vulnersosv
added 2022/10/19 12:0 p.m.7 views

com.liferay:com.liferay.document.library.layout.set.prototype (>=1.0.0 <=2.0.10), com.liferay:com.liferay.frontend.image.editor.integration.document.library (>=1.0.0 <=1.0.16) potentially affected by CVE-2022-42113 via com.liferay:com.liferay.document.library.web (=1.0.0)

com.liferay:com.liferay.document.library.web MAVEN version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on com.liferay:com.liferay.document.library.web and may be impacted: - com.liferay:com.liferay.document.library.layout.set.prototype =1.0.0,...

6.1CVSS6.3AI score0.00496EPSS
Exploits0
cve
cve
added 2022/10/18 12:0 a.m.65 views

CVE-2022-42113

CVE-2022-42113 is a documented XSS vulnerability in the Document Library module affecting Liferay Portal 7.4.3.30–7.4.3.36 and Liferay DXP 7.4 update 30–36. The issue allows remote attackers to inject arbitrary web script or HTML via the redirect parameter. The CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:...

6.1CVSS6AI score0.00496EPSS
Exploits0References1Affected Software2
vulnrichment
vulnrichment
added 2022/10/18 12:0 a.m.3 views

CVE-2022-42113

A Cross-site scripting XSS vulnerability in Document Library module in Liferay Portal 7.4.3.30 through 7.4.3.36, and Liferay DXP 7.4 update 30 through update 36 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter...

6.1AI score0.00496EPSS
Exploits0References2
Rows per page
Query Builder