3 matches found
EUVD-2025-30243
Malicious code in bioql PyPI...
Cross-site Request Forgery (CSRF)
Overview com.liferay.portal:portal-impl is a Portal Impl Affected versions of this package are vulnerable to Cross-site Request Forgery CSRF via the orderUuid parameter in the server license registration process. An attacker can register a server license without authorization by tricking an...
Cross-site Request Forgery (CSRF)
Overview com.liferay.portal:portal-service is a portal service package for Liferay. Affected versions of this package are vulnerable to Cross-site Request Forgery CSRF via the orderUuid parameter in the server license registration process. An attacker can register a server license without...