PT-2022-19340 · Liferay · Liferay Dxp +1

Name of the Vulnerable Software and Affected Versions: Liferay Portal version 7.4.3.4 Liferay DXP version 7.4 GA Description: The issue allows attackers to execute arbitrary web scripts or HTML via parameters with the filter prefix. This enables the execution of malicious scripts, potentially...

Struts2 2.3.15 OGNL Injection

CVE Number: CVE-2013-2251 Title: Struts2 Prefixed Parameters OGNL Injection Vulnerability Affected Software: Apache Struts v2.0.0 - 2.3.15 Credit: Takeshi Terada of Mitsui Bussan Secure Directions, Inc. Issue Status: v2.3.15.1 was released which fixes this vulnerability Issue ID by Vender: S2-016...