Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:16 a.m.9 views

CVE-2023-47795

Stored cross-site scripting XSS vulnerability in the Document and Media widget in Liferay Portal 7.4.3.18 through 7.4.3.101, and Liferay DXP 2023.Q3 before patch 6, and 7.4 update 18 through 92 allows remote authenticated users to inject arbitrary web script or HTML via a crafted payload injected...

9CVSS5AI score0.00614EPSS
Exploits0References1
OSV
OSV
added 2024/02/21 2:15 p.m.5 views

CVE-2023-47795

Stored cross-site scripting XSS vulnerability in the Document and Media widget in Liferay Portal 7.4.3.18 through 7.4.3.101, and Liferay DXP 2023.Q3 before patch 6, and 7.4 update 18 through 92 allows remote authenticated users to inject arbitrary web script or HTML via a crafted payload injected...

5.4CVSS7.1AI score0.00614EPSS
Exploits0References1
CVE
CVE
added 2024/02/21 2:1 p.m.72 views

CVE-2023-47795

Summary: CVE-2023-47795 is a stored XSS vulnerability in the Document and Media widget of Liferay Portal 7.4.x (7.4.3.18–7.4.3.101) and Liferay DXP 2023.Q3 before patch 6, and in 7.4 update 18–92. The issue allows remote authenticated users to inject arbitrary script/HTML via crafting payloads in...

9CVSS7AI score0.00614EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/02/21 2:1 p.m.19 views

CVE-2023-47795

Stored cross-site scripting XSS vulnerability in the Document and Media widget in Liferay Portal 7.4.3.18 through 7.4.3.101, and Liferay DXP 2023.Q3 before patch 6, and 7.4 update 18 through 92 allows remote authenticated users to inject arbitrary web script or HTML via a crafted payload injected...

9CVSS7.3AI score0.00614EPSS
Exploits0References1
Rows per page
Query Builder