Liferay Enterprise Portal@* Security Vulnerabilities and Issues — Liferay Enterprise Portal@* CVE List

Lucene search

LiferayLiferay Enterprise Portal*

3 matches found

CVE•added 2008/02/05 12:0 a.m.•46 views

CVE-2008-0182

Cross-site request forgery (CSRF) vulnerability in the Admin portlet in Liferay Portal before 4.4.0 allows remote authenticated users to perform unspecified actions as unspecified other authenticated users via the Shutdown message.

4.3CVSS6.5AI score0.00131EPSS

CVE•added 2005/05/10 4:0 a.m.•42 views

CVE-2004-2030

Multiple cross-site scripting (XSS) vulnerabilities in index.jsp for Liferay before 2.2.0 release 10/1/2004 allow remote attackers to inject arbitrary web script or HTML, as demonstrated using the message subject.

4.3CVSS6AI score0.01623EPSS

CVE•added 2008/02/05 12:0 a.m.•39 views

CVE-2008-0180

Cross-site scripting (XSS) vulnerability in themes/_unstyled/templates/init.vm in Liferay Portal 4.3.6 allows remote authenticated users to inject arbitrary web script or HTML via the Greeting field in a User Profile.

4.3CVSS5.3AI score0.00582EPSS