com.liferay:com.liferay.gradle.plugins.service.builder (=1.0.10), com.liferay:com.liferay.portal.tools.db.support (>=1.0.0 <=1.0.8) potentially affected by CVE-2025-43802 via com.liferay:com.liferay.portal.tools.service.builder (>=1.0.119 <=1.0.135)

com.liferay:com.liferay.portal.tools.service.builder MAVEN version =1.0.119, =1.0.0, =1.0.8 Source cves: CVE-2025-43802 Source advisory: SNYK:JAVA-COMLIFERAY-13003696...

com.liferay:com.liferay.css.builder (>=1.0.8 <=1.0.14), com.liferay:com.liferay.deployment.helper (>=1.0.0 <=1.0.2) +8 more potentially affected by CVE-2022-41414 via com.liferay.portal:portal-impl (=7.0.0-nightly)

com.liferay.portal:portal-impl MAVEN version =7.0.0-nightly is affected by a known vulnerability. The following packages have a transitive dependency on com.liferay.portal:portal-impl and may be impacted: - com.liferay:com.liferay.css.builder =1.0.8, =1.0.0, =1.0.6, =1.0.3, =1.0.3, =1.0.47,...

Liferay JSON Server API Authentication

============================================= - Release date: August 3rd, 2012 - Discovered by: Danilo Massa & Enrico Cinquini - Severity: High ============================================= I. VULNERABILITY ------------------------- Liferay JSON service API authentication vulnerability II...