4 matches found
CVE-2025-43805
Liferay Portal 7.3.0 through 7.4.3.111, and Liferay DXP 2023.Q4.0, 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, and 7.3 GA through update 35 does not perform an authorization check when users attempt to view a display page template, which allows remote attackers to view display page...
CVE-2025-43805
CVE-2025-43805 affects Liferay Portal 7.3.0 through 7.4.3.111 and Liferay DXP 2023.Q4.0, 2023.Q3.1–2023.Q3.4, 7.4 GA up to update 92, and 7.3 GA up to update 35, where the system fails to perform an authorization check when viewing a display page template. This allows an unauthenticated, remote a...
PT-2025-38085
Name of the Vulnerable Software and Affected Versions Liferay Portal versions 7.3.0 through 7.4.3.111 Liferay DXP versions 2023.Q3.1 through 2023.Q3.4 and 2023.Q4.0 Liferay Portal 7.4 GA through update 92 Liferay Portal 7.3 GA through update 35 Description The software does not perform an...
Liferay Portal和Liferay DXP 安全漏洞
Liferay Portal and Liferay DXP are both products of Liferay, Inc.Liferay Portal is a J2EE based portal solution. The solution uses technologies such as EJB as well as JMS and can be used as a Web publishing and sharing workspace, enterprise collaboration platform, social network, etc. Liferay DXP...