Lucene search
K

10 matches found

OSV
OSV
added 2025/10/31 9:31 p.m.7 views

GHSA-Q285-WFPG-93HR Liferay Portal and DXP affected by multiple cross-site scripting (XSS) vulnerabilities in web content template’s select structure page

Multiple cross-site scripting XSS vulnerabilities in web content template’s select structure page in Liferay Portal 7.4.3.35 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 update 35 through update 92 allow remote attackers to inject arbitrary we...

6.1CVSS5.9AI score0.00214EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/10/31 9:31 p.m.7 views

Liferay Portal and DXP affected by multiple cross-site scripting (XSS) vulnerabilities in web content template’s select structure page

Multiple cross-site scripting XSS vulnerabilities in web content template’s select structure page in Liferay Portal 7.4.3.35 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 update 35 through update 92 allow remote attackers to inject arbitrary we...

6.1CVSS5.9AI score0.00214EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2025/10/31 7:15 p.m.16 views

CVE-2025-62267

Multiple cross-site scripting XSS vulnerabilities in web content template’s select structure page in Liferay Portal 7.4.3.35 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 update 35 through update 92 allow remote attackers to inject arbitrary we...

6.1CVSS0.00214EPSS
Exploits0References1
CVE
CVE
added 2025/10/31 6:12 p.m.15 views

CVE-2025-62267

CVE-2025-62267 describes multiple cross-site scripting (XSS) vulnerabilities in Liferay Portal 7.4.3.35–7.4.3.111 and Liferay DXP 2023.Q3/Q4 releases, triggered through the web content template’s select structure page. The root cause is improper handling of user input in the First Name, Middle Na...

6.1CVSS5.4AI score0.00214EPSS
Exploits0References1Affected Software2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-2624

Malicious code in bioql PyPI...

5.5CVSS7.3AI score0.00199EPSS
Exploits0References4
OSV
OSV
added 2025/01/31 12:15 p.m.3 views

DEBIAN-CVE-2025-21675

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Clear port select structure when fail to create Clear the port select structure on error so no stale values left after definers are destroyed. That's because the mlx5lagdestroydefiners always try to destroy all lag...

5.5CVSS5.7AI score0.00199EPSS
Exploits0References1
NVD
NVD
added 2025/01/31 12:15 p.m.18 views

CVE-2025-21675

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Clear port select structure when fail to create Clear the port select structure on error so no stale values left after definers are destroyed. That's because the mlx5lagdestroydefiners always try to destroy all lag...

5.5CVSS0.00199EPSS
Exploits0References5
CVE
CVE
added 2025/01/31 11:25 a.m.209 views

CVE-2025-21675

The CVE-2025-21675 issue affects the Linux kernel code path for mlx5_lag_port_sel_create, where resource cleanup was incomplete and could lead to double-destruction of definers after a failure to create the port select structure. The resulting cleanup gap caused a NULL pointer dereference on erro...

5.5CVSS6.8AI score0.00199EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2025/01/31 11:25 a.m.6 views

CVE-2025-21675

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Clear port select structure when fail to create Clear the port select structure on error so no stale values left after definers are destroyed. That's because the mlx5lagdestroydefiners always try to destroy all lag...

5.5CVSS5.6AI score0.00199EPSS
Exploits0
Cvelist
Cvelist
added 2025/01/31 11:25 a.m.11 views

CVE-2025-21675 net/mlx5: Clear port select structure when fail to create

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Clear port select structure when fail to create Clear the port select structure on error so no stale values left after definers are destroyed. That's because the mlx5lagdestroydefiners always try to destroy all lag...

0.00199EPSS
Exploits0References4
Rows per page
Query Builder