Lucene search

Veracode Vulnerability DatabaseVERACODE:41069

HistoryJun 29, 2023 - 4:55 a.m.

Cross-Site Request Forgery (CSRF)

2023-06-2904:55:20

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

cross-site request forgery

com.liferay.layout.seo.web

validation

backurl parameter

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

59.0%

JSON

com.liferay.layout.seo.web is vulnerable to Cross-Site Request Forgery (CSRF). The vulnerability exists due to the lack of validation in the backURL parameter in the layout module’s SEO configuration, which allows an attacker to inject and execute malicious code in the scripting console via the _com_liferay_layout_admin_web_portlet_GroupPagesPortlet_backURL parameter.

CPENameOperatorVersion
com.liferay.layout.seo.weble2.0.62
com.liferay.layout.seo.weble2.0.62

CPE	Name	Operator	Version
	com.liferay.layout.seo.web	le	2.0.62
	com.liferay.layout.seo.web	le	2.0.62

References

github.com/advisories/GHSA-p2fc-xxr8-fw3p

github.com/liferay/liferay-portal/commit/79fede5f639b4bfbab35191d2879b64c3cca4f1a

liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/cve-2023-35030

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

59.0%

JSON

Related for VERACODE:41069