8 matches found
EUVD-2017-9015
Malware in sbrugna...
CVE-2017-17868
In Liferay Portal 6.1.0, the tags section has XSS via a Public Render Parameter prp value, as demonstrated by prp564233524tag...
CVE-2017-17868
In Liferay Portal 6.1.0, the tags section has XSS via a Public Render Parameter prp value, as demonstrated by prp564233524tag...
Design/Logic Flaw
In Liferay Portal 6.1.0, the tags section has XSS via a Public Render Parameter prp value, as demonstrated by prp564233524tag...
CVE-2017-17868
In Liferay Portal 6.1.0, the tags section has XSS via a Public Render Parameter prp value, as demonstrated by prp564233524tag...
Liferay Porta tags section cross-site scripting vulnerability
Liferay Portal is a J2EE-based portal solution from Liferay, Inc. The solution uses EJB as well as JMS and other technologies , and can be used as a Web publishing and sharing workspaces , enterprise collaboration platforms , social networks and so on. A cross-site scripting vulnerability exists ...
CVE-2017-17868
In Liferay Portal 6.1.0, the tags section has XSS via a Public Render Parameter prp value, as demonstrated by prp564233524tag...
CVE-2017-17868
In Liferay Portal 6.1.0, the tags section is vulnerable to cross-site scripting via a Public Render Parameter (p_r_p) value (example: p_r_p_564233524_tag). This is caused by improper sanitization of the p_r_p parameter, allowing arbitrary script to be injected through the parameter. The vulnerabi...