com.liferay.portal:com.liferay.portal.impl
Contains implementation for the portal services.
Security Advisories for com.liferay.portal:com.liferay.portal.impl in maven
Moderate
about 1 month ago
Liferay Portal and DXP use an incorrect cache-control header
maven
com.liferay.portal:com.liferay.portal.impl, com.liferay:com.liferay.adaptive.media.web
Moderate
about 1 month ago
Liferay Portal Stores Password Reset Tokens in Plain Text
maven
com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.portal.bom
Moderate
about 1 month ago
Liferay Portal ComboServlet denial of service via large file combination
maven
com.liferay.portal:com.liferay.portal.impl
Moderate
about 2 months ago
Liferay Portal reflected cross-site scripting (XSS) vulnerability in the google_gaget
maven
com.liferay.portal:com.liferay.portal.impl
Moderate
about 2 months ago
Liferay is Vulnerable to Authorization Bypass Through User-Controlled Key
maven
com.liferay.portal:com.liferay.portal.impl
Moderate
2 months ago
Liferay Portal vulnerable to path traversal and denial-of-service in the ComboServlet
maven
com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.portal.bom
Moderate
3 months ago
Liferay Portal Cross-Site Request Forgery (CSRF) vulnerability
maven
com.liferay.portal:com.liferay.portal.impl
Moderate
3 months ago
Liferay Portal has unchecked input for loop condition vulnerability in XML-RPC
maven
com.liferay.portal:com.liferay.portal.impl
Moderate
3 months ago
Liferay Portal has Improper Validation of Specified Quantity in Input
maven
com.liferay.portal:com.liferay.portal.kernel, com.liferay.portal:com.liferay.portal.impl
Moderate
3 months ago
Liferay Portal has stored cross-site scripting (XSS) vulnerability
maven
com.liferay.portal:com.liferay.portal.impl
Moderate
4 months ago
Liferay Portal JSONWS API endpoint shares sensitive information
maven
com.liferay.portal:com.liferay.portal.impl
Moderate
4 months ago
Liferay Portal and Liferay DXP have a reflected cross-site scripting vulnerability
maven
com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
High
almost 2 years ago
Liferay Portal and Liferay DXP Vulnerable to Cross-Site Request Forgery in Terms of Use Page
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:com.liferay.portal.impl
Moderate
about 3 years ago
Liferay Portal Insecure Default Configuration in auth.login.prompt.enabled
maven
com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.portal.bom
High
over 3 years ago
Liferay Portal and Liferay DXP fails to invalidate password reset tokens after use
maven
com.liferay.portal:release.dxp.bom, com.liferay.portal:com.liferay.portal.impl
High
over 3 years ago
Liferay Portal and Liferay DXP insecure default configuration
maven
com.liferay.portal:release.portal.bom, com.liferay.portal:com.liferay.portal.impl
Moderate
over 3 years ago
Liferay Portal and Liferay DXP Bypass via Double Encoded URL
maven
com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.portal.bom, com.liferay.portal:release.dxp.bom
Moderate
over 3 years ago
Liferay Portal and Liferay DXP fails to check permissions to view sites/groups
maven
com.liferay.portal:com.liferay.portal.impl, com.liferay:com.liferay.site.browser.web, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom