Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

maven

com.liferay.portal:com.liferay.portal.impl

maven · Contains implementation for the portal services. · Repository · Package

Security Advisories for com.liferay.portal:com.liferay.portal.impl in maven

Moderate
3 days ago

Liferay Portal vulnerable to path traversal and denial-of-service in the ComboServlet GSA_kwCzR0hTQS0yaG03LXI4ZjMtNDIzaM4ABMw8

maven com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.portal.bom
Moderate
13 days ago

Liferay Portal Cross-Site Request Forgery (CSRF) vulnerability GSA_kwCzR0hTQS02OTdoLTNxNm0tandwNM4ABMZX

maven com.liferay.portal:com.liferay.portal.impl
Moderate
16 days ago

Liferay Portal has unchecked input for loop condition vulnerability in XML-RPC GSA_kwCzR0hTQS05NWg0LThtcWMtNG1wZs4ABMPr

maven com.liferay.portal:com.liferay.portal.impl
Moderate
17 days ago

Liferay Portal has Improper Validation of Specified Quantity in Input GSA_kwCzR0hTQS14dmdnLTloMjktNGczNM4ABMIU

maven com.liferay.portal:com.liferay.portal.kernel, com.liferay.portal:com.liferay.portal.impl
Moderate
17 days ago

Liferay Portal has stored cross-site scripting (XSS) vulnerability GSA_kwCzR0hTQS1yNDV2LTIyODktamdyNM4ABMEc

maven com.liferay.portal:com.liferay.portal.impl
Moderate
about 1 month ago

Liferay Portal JSONWS API endpoint shares sensitive information GSA_kwCzR0hTQS1jdjlqLW1nOXctdjd3bc4ABLYM

maven com.liferay.portal:com.liferay.portal.impl
Moderate
about 2 months ago

Liferay Portal and Liferay DXP have a reflected cross-site scripting vulnerability GSA_kwCzR0hTQS0yMjJ3LXhtYzUtamhwM84ABK8q

maven com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
High
over 1 year ago

Liferay Portal and Liferay DXP Vulnerable to Cross-Site Request Forgery in Terms of Use Page GSA_kwCzR0hTQS1taDlyLTlwY3gtcng1Nc4AA5Z6

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:com.liferay.portal.impl
Moderate
almost 3 years ago

Liferay Portal Insecure Default Configuration in auth.login.prompt.enabled GSA_kwCzR0hTQS05NDI3LTdmNjUtODhjOM4AAvMO

maven com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.portal.bom
High
over 3 years ago

Liferay Portal and Liferay DXP fails to invalidate password reset tokens after use GSA_kwCzR0hTQS12d2o4LTRncmYtM3I4ds4AArKO

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:com.liferay.portal.impl
High
over 3 years ago

Liferay Portal and Liferay DXP insecure default configuration GSA_kwCzR0hTQS1qZmNoLW0yeDMtMnY2Ns4AApYW

maven com.liferay.portal:release.portal.bom, com.liferay.portal:com.liferay.portal.impl
Moderate
over 3 years ago

Liferay Portal and Liferay DXP Bypass via Double Encoded URL GSA_kwCzR0hTQS12cnd4LXE5cGoteDQ4OM4AAmDc

maven com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.portal.bom, com.liferay.portal:release.dxp.bom
Moderate
over 3 years ago

Liferay Portal and Liferay DXP fails to check permissions to view sites/groups GSA_kwCzR0hTQS04MjJmLWpmcGctaGc3aM09mw

maven com.liferay.portal:com.liferay.portal.impl, com.liferay:com.liferay.site.browser.web, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom

Filter by Severity

Moderate 10 High 3