CVE-2022-42113

A Cross-site scripting XSS vulnerability in Document Library module in Liferay Portal 7.4.3.30 through 7.4.3.36, and Liferay DXP 7.4 update 30 through update 36 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter...

EUVD-2021-20045

Malware in sbrugna...

EUVD-2022-45199

Malicious code in bioql PyPI...

CVE-2022-42113

CVE-2022-42113 is a documented XSS vulnerability in the Document Library module affecting Liferay Portal 7.4.3.30–7.4.3.36 and Liferay DXP 7.4 update 30–36. The issue allows remote attackers to inject arbitrary web script or HTML via the redirect parameter. The CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:...

CVE-2022-42113

A Cross-site scripting XSS vulnerability in Document Library module in Liferay Portal 7.4.3.30 through 7.4.3.36, and Liferay DXP 7.4 update 30 through update 36 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter...

CVE-2021-33337

Cross-site scripting XSS vulnerability in the Document Library module's add document menu in Liferay Portal 7.3.0 through 7.3.4, and Liferay DXP 7.1 before fix pack 20, and 7.2 before fix pack 9, allows remote attackers to inject arbitrary web script or HTML via the...

Cross site scripting

Cross-site scripting XSS vulnerability in the Document Library module's add document menu in Liferay Portal 7.3.0 through 7.3.4, and Liferay DXP 7.1 before fix pack 20, and 7.2 before fix pack 9, allows remote attackers to inject arbitrary web script or HTML via the...