Lucene search
+L

4 matches found

Tenable Nessus
Tenable Nessus
added 2023/05/29 12:0 a.m.24 views

Liferay Portal 7.4.3.50 < 7.4.3.51 XSS

Cross-site scripting XSS vulnerability in the Web Content Display widget's article selector in Liferay Liferay Portal 7.4.3.50, and Liferay DXP 7.4 update 50 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a web content article's Title field. Not...

5.4CVSS5.8AI score0.00533EPSS
Exploits0References2
NVD
NVD
added 2023/05/24 3:15 p.m.54 views

CVE-2023-33942

Cross-site scripting XSS vulnerability in the Web Content Display widget's article selector in Liferay Liferay Portal 7.4.3.50, and Liferay DXP 7.4 update 50 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a web content article's Title field...

5.4CVSS5.3AI score0.00533EPSS
Exploits0References1
OSV
OSV
added 2023/05/24 3:15 p.m.32 views

CVE-2023-33942

Cross-site scripting XSS vulnerability in the Web Content Display widget's article selector in Liferay Liferay Portal 7.4.3.50, and Liferay DXP 7.4 update 50 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a web content article's Title field...

5.4CVSS6AI score0.00533EPSS
Exploits0References1
CVE
CVE
added 2023/05/24 2:49 p.m.78 views

CVE-2023-33942

The CVE-2023-33942 entry describes a cross-site scripting (XSS) flaw in the Liferay Web Content Display widget’s article selector for Portal 7.4.3.50 and DXP 7.4 Update 50, where an attacker can inject arbitrary scripts via the Title field of a web content article. Affected product/versions: Life...

5.4CVSS5.2AI score0.00533EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder