4 matches found
CVE-2025-43789
The CVE-2025-43789 issue affects Liferay Portal/Liferay DXP: JSON Web Services in Liferay Portal 7.4.0–7.4.3.119 and Liferay DXP 2024.Q1.1–2024.Q1.9 (7.4 GA through update 92 published to OSGi) are registered and invoked directly as classes, enabling Service Access Policies to be executed. Root c...
Apereo CAS 注入漏洞
Apereo CAS is a web-based enterprise multilingual single sign-on solution from Apereo open source. An injection vulnerability exists in Apereo CAS version 5.2.6, which originates from the file cas-5.2.6webapp-mgmtcas-management-webapp-...
Mozilla: HTTPS pages could have been intercepted by a registered service worker when they should not have been
The Mozilla Foundation Security Advisory describes this flaw as: When a HTTPS page was embedded in a HTTP page, and there was a service worker registered for the former, the service worker could have intercepted the request for the secure page despite the iframe not being a secure context due to...
How to check the number of registered service instances per FMA service
This article is intended for use when troubleshooting issues related to missing service instances of any Citrix FMA service with Central configuration service. All the FMA services have to registered with the Central configuration service for a CVAD site to function properly...