3 matches found
CVE-2023-42496
Reflected cross-site scripting XSS vulnerability on the add assignees to a role page in Liferay Portal 7.3.3 through 7.4.3.97, and Liferay DXP 2023.Q3 before patch 6, 7.4 GA through update 92, and 7.3 before update 34 allows remote attackers to inject arbitrary web script or HTML via the...
CVE-2023-42496
Vulnerability summary (CVE-2023-42496) : A reflected cross-site scripting (XSS) flaw affects Liferay Portal 7.3.3–7.4.3.97 and Liferay DXP 2023.Q3 before patch 6, as well as 7.4 GA through update 92 and 7.3 before update 34. The issue is triggered by supplying user-supplied input in the parameter...
CVE-2023-42496
Reflected cross-site scripting XSS vulnerability on the add assignees to a role page in Liferay Portal 7.3.3 through 7.4.3.97, and Liferay DXP 2023.Q3 before patch 6, 7.4 GA through update 92, and 7.3 before update 34 allows remote attackers to inject arbitrary web script or HTML via the...