3 matches found
CVE-2025-4576
creationtimestamp| type| source ---|---|--- 2025-08-09 22:06:01+00:00| seen| https://gist.github.com/bolhasec/e6c336b3013233969c0fdbe523deab57 2026-03-26 12:26:37+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-4576.yaml 2026-03-30...
com.liferay:com.liferay.blogs.editor.config (>=1.0.0 <=2.0.0), com.liferay:com.liferay.blogs.editor.configuration (>=1.0.0 <=1.0.9) +2 more potentially affected by CVE-2025-4576 via com.liferay:com.liferay.blogs.web (>=1.0.0 <=2.0.0)
com.liferay:com.liferay.blogs.web MAVEN version =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =2.0.1 Source cves: CVE-2025-4576 Source advisory: OSV:GHSA-6QCG-28JH-HM7R...
Liferay Portal 7.4.0.x <= 7.4.3.132 Multiple Vulnerabilities
The version of Liferay Portal installed on the remote host is 7.4.x = 7.4.3.132. It is, therefore, affected by multiple vulnerabilities: - A reflected cross-site scripting XSS vulnerability in the Liferay Portal allows an remote non-authenticated attacker to inject JavaScript into the...