Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/09/18 10:28 p.m.5 views

CVE-2025-43805

Liferay Portal 7.3.0 through 7.4.3.111, and Liferay DXP 2023.Q4.0, 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, and 7.3 GA through update 35 does not perform an authorization check when users attempt to view a display page template, which allows remote attackers to view display page...

6.9CVSS6.9AI score0.00271EPSS
Exploits0References1
CVE
CVE
added 2025/09/16 9:33 p.m.18 views

CVE-2025-43805

CVE-2025-43805 affects Liferay Portal 7.3.0 through 7.4.3.111 and Liferay DXP 2023.Q4.0, 2023.Q3.1–2023.Q3.4, 7.4 GA up to update 92, and 7.3 GA up to update 35, where the system fails to perform an authorization check when viewing a display page template. This allows an unauthenticated, remote a...

6.9CVSS6.5AI score0.00271EPSS
Exploits0References1Affected Software2
Positive Technologies
Positive Technologies
added 2025/09/16 12:0 a.m.7 views

PT-2025-38085

Name of the Vulnerable Software and Affected Versions Liferay Portal versions 7.3.0 through 7.4.3.111 Liferay DXP versions 2023.Q3.1 through 2023.Q3.4 and 2023.Q4.0 Liferay Portal 7.4 GA through update 92 Liferay Portal 7.3 GA through update 35 Description The software does not perform an...

6.9CVSS6.5AI score0.00271EPSS
Exploits0References10
CNNVD
CNNVD
added 2025/09/16 12:0 a.m.7 views

Liferay Portal和Liferay DXP 安全漏洞

Liferay Portal and Liferay DXP are both products of Liferay, Inc.Liferay Portal is a J2EE based portal solution. The solution uses technologies such as EJB as well as JMS and can be used as a Web publishing and sharing workspace, enterprise collaboration platform, social network, etc. Liferay DXP...

6.9CVSS6.4AI score0.00271EPSS
Exploits0References2
Rows per page
Query Builder