Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

maven

com.liferay.portal:release.portal.bom

maven

View on github.com · View on repo1.maven.org

Security Advisories for com.liferay.portal:release.portal.bom in maven

Moderate
about 1 month ago

Liferay Portal Vulnerable to Reflected XSS via the selectedLanguageId Parameter GSA_kwCzR0hTQS0yajk3LTRqbXEtYzR4Zs4ABOHD

maven com.liferay.portal:release.portal.bom
Moderate
about 1 month ago

Liferay Portal is vulnerable to XSS in the Blogs widget GSA_kwCzR0hTQS01Nmp2LTR3dzMtNjVtd84ABODP

maven com.liferay.portal:release.portal.bom
Moderate
about 1 month ago

Liferay Portal is vulnerable to DNS rebinding attacks GSA_kwCzR0hTQS1mNXZoLTRyajItdzhyOM4ABOC_

maven com.liferay.portal:release.portal.bom
Moderate
about 1 month ago

Liferay Portal vulnerable to password enumeration GSA_kwCzR0hTQS04aHczLWdod3YtY3JmaM4ABOBy

maven com.liferay.portal:release.portal.bom
High
about 1 month ago

Liferay Portal Vulnerable to DoS via Crafted Headless API Request GSA_kwCzR0hTQS12Z3F4LTQ0N20td3Zjas4ABN5j

maven com.liferay.portal:release.portal.bom
Moderate
about 1 month ago

Liferay Portal Does Not Limit Access to APIs Before Email Verification GSA_kwCzR0hTQS1ndjd3LWpoOGctdnI3M84ABN5i

maven com.liferay.portal:release.portal.bom
High
about 1 month ago

Liferay Portal Vulnerable to CSRF in Headless APIs GSA_kwCzR0hTQS1naDR3LThxZ3EtOHc5cs4ABN5s

maven com.liferay.portal:release.portal.bom
Moderate
about 1 month ago

Liferay Portal Stores Password Reset Tokens in Plain Text GSA_kwCzR0hTQS14Y2o2LXhwamctYzR4cs4ABN5f

maven com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.portal.bom
Moderate
2 months ago

Liferay Portal is vulnerable to Stored XSS through Forms text type field GSA_kwCzR0hTQS0zNzhmLThxNTQtM2ZxeM4ABNIP

maven com.liferay.portal:release.portal.bom
Moderate
2 months ago

Liferay Portal has multiple Stored XSS vulnerabilities on its View Order page GSA_kwCzR0hTQS00bXF4LTRwOGctOTk1d84ABNGF

maven com.liferay.portal:release.portal.bom
Moderate
2 months ago

Liferay Portal is vulnerable to XSS through its Commerce Search Result widget GSA_kwCzR0hTQS14eDdoLTJ3ZjctaGM3cM4ABNGM

maven com.liferay.portal:release.portal.bom
Moderate
2 months ago

Liferay Profile Widget does not prevent vCard extension spoofing GSA_kwCzR0hTQS1wZnhqLWd2cWctbWo0NM4ABNA_

maven com.liferay.portal:release.portal.bom
Moderate
2 months ago

Liferay Portal Vulnerable to XSS in Web Content translation GSA_kwCzR0hTQS1xaDkyLWNyNWYtMzU5Nc4ABMy2

maven com.liferay.portal:release.portal.bom
Moderate
2 months ago

Liferay Portal vulnerable to reflected cross-site scripting via the `redirect` parameter GSA_kwCzR0hTQS1tNGhnLTQ2cHctNm1tds4ABMw9

maven com.liferay.portal:release.portal.bom
Moderate
2 months ago

Liferay Portal vulnerable to cross-site scripting in the web content template GSA_kwCzR0hTQS1qdjh4LW1tM3YtNzVyN84ABMxD

maven com.liferay:com.liferay.journal.web, com.liferay.portal:release.portal.bom
Moderate
2 months ago

Liferay Portal vulnerable to path traversal and denial-of-service in the ComboServlet GSA_kwCzR0hTQS0yaG03LXI4ZjMtNDIzaM4ABMw8

maven com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.portal.bom
Moderate
2 months ago

Liferay Portal vulnerable to cross-site scripting in the Calendar widget GSA_kwCzR0hTQS1wZjg2LTR3MzUtY2o4Oc4ABMxB

maven com.liferay:com.liferay.calendar.web, com.liferay.portal:release.portal.bom
Moderate
3 months ago

Liferay Portal Uses Default Password GSA_kwCzR0hTQS00M3hmLTU5dnItZzRmMs4ABMI1

maven com.liferay.portal:release.portal.bom
Moderate
3 months ago

Liferay Portal and Liferay DXP vulnerable to Stored Cross-site Scripting GSA_kwCzR0hTQS02Nng2LThqZ3YtcXBmaM4ABL8I

maven com.liferay:com.liferay.portal.workflow.task.web, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
3 months ago

Liferay Portal and Liferay DXP vulnerable to store Cross-site Scripting GSA_kwCzR0hTQS1yY2M3LWp4N3AtaHJ2NM4ABL2G

maven com.liferay:com.liferay.portal.workflow.web, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal Reflected Cross-Site Scripting Vulnerability via PortalUtil.escapeRedirect GSA_kwCzR0hTQS1mdnF2LTU5M3EtcXA4cs4ABLXf

maven com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal's Unlimited File Upload Could Result in DoS GSA_kwCzR0hTQS1xcHA2LWYzcWotcmdncc4ABLVR

maven com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal Username Enumeration Vulnerability GSA_kwCzR0hTQS14N3A0LXY4bWotNmZ4eM4ABLUd

maven com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal Reflected Cross-Site Scripting Vulnerability via snippet Parameter GSA_kwCzR0hTQS1xMmd2LXc1ODMtZjJ2cc4ABLUO

maven com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal Vulnerable to Cross-Site Scripting via DDMPortlet_definition Parameter GSA_kwCzR0hTQS02MnBmLWhjd2otcmNmY84ABLS2

maven com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal Vulnerable to Cross-Site Scripting in Dynamic Data Mapping GSA_kwCzR0hTQS1tcHd3LXIzN2Mtdnhqd84ABLS3

maven com.liferay.portal:release.portal.bom
High
4 months ago

Liferay Portal Vulnerable to Cross-Site Request Forgery GSA_kwCzR0hTQS1wOWdjLTU5aGYteDQ4cM4ABLR0

maven com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal Unauthenticated File Access via URL GSA_kwCzR0hTQS01Zng1LWNmZjYtZjNmcM4ABLRY

maven com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal Vulnerable to Cross-Site Scripting via assetTagNames Parameter GSA_kwCzR0hTQS1qNnA4LWczcmotZ2hwbc4ABLRT

maven com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal Enumeration Discrepancy in Calendars GSA_kwCzR0hTQS1nNHZwLTRncXItN3Y4Y84ABLOb

maven com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal Vulnerable to Cross-Site Scripting via DDM Structure Field Labels GSA_kwCzR0hTQS1tNDlwLTZjanAteDJoM84ABLOg

maven com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal CSRF Vulnerability via Endpoint Parameter GSA_kwCzR0hTQS03cTMzLWd3Y20tcjZjas4ABLOI

maven com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal has Stored Cross-Site Scripting Vulnerability via Message Boards Feature GSA_kwCzR0hTQS0yMmpwLXczY2ctZ3Ztbc4ABLMi

maven com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal Vulnerable to Cross-Site Scripting GSA_kwCzR0hTQS0zcDJtLTU3NHYtdjI1N84ABLLy

maven com.liferay.portal:release.portal.bom
Low
4 months ago

Liferay Portal Login Bypass Vulnerability GSA_kwCzR0hTQS1nNHdnLW1wZmcteDJxNs4ABLLj

maven com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal 7.4.0 and Liferay DXP have a reflected cross-site scripting (XSS) vulnerability GSA_kwCzR0hTQS1tNWM3LTVndjMtaGNwZs4ABK_9

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal and Liferay DXP have a reflected cross-site scripting vulnerability GSA_kwCzR0hTQS0yMjJ3LXhtYzUtamhwM84ABK8q

maven com.liferay.portal:com.liferay.portal.impl, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal and Liferay DXP have a Denial Of Service via File Upload (DOS) vulnerability GSA_kwCzR0hTQS1jZzk5LW04OHgtNDIyY84ABK8J

maven com.liferay:com.liferay.account.admin.web, com.liferay:com.liferay.users.admin.web, com.liferay:com.liferay.image.uploader.web, com.liferay:com.liferay.frontend.taglib, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal and Liferay DXP vulnerable to Server-Side Request Forgery GSA_kwCzR0hTQS1jNmc1LWc2cjctcTRqNs4ABK5G

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
4 months ago

Liferay Portal and Liferay DXP vulnerable to Server-Side Request Forgery GSA_kwCzR0hTQS02djkzLWZyZjktMnJwOM4ABK5H

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
8 months ago

Liferay Cross-site Scripting vulnerability GSA_kwCzR0hTQS1xaHA2LXZwN2MtZzd4cM4ABG8e

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
9 months ago

Liferay Portal and Liferay DXP Reveals Data via Forms GSA_kwCzR0hTQS05ZmNnLXdycDgtcWhyNM4ABFwV

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
9 months ago

Liferay Portal and Liferay DXP Vulnerable to Cross-Site Scripting (XSS) GSA_kwCzR0hTQS1ocmM0LXAyaDMtcGpxd84ABFp_

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
12 months ago

Liferay Portal and Liferay DXP have Cross-site Scripting vulnerability in edit Service Access Policy page GSA_kwCzR0hTQS1weDM4LTIzOWcteDVtZ84ABCiF

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
12 months ago

Liferay Portal and Liferay DXP vulnerable to Cross-site Scripting GSA_kwCzR0hTQS00aHhyLTI4bXYtcTcyOc4ABCiC

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Critical
about 1 year ago

Liferay Portal and Liferay DXP Vulnerable to CSRF in the Script Console GSA_kwCzR0hTQS1jaGoyLTR2ZzctaGhnM84ABAkm

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
High
about 1 year ago

Liferay Portal and Liferay DXP Vulnerable to Cross-Site Request Forgery (CSRF) via the Content Page Editor GSA_kwCzR0hTQS1wNjNtLXZtanItd2czN84ABAkn

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
High
about 1 year ago

Liferay Portal and Liferay DXP Vulnerable to Cross-Site Request Forgery (CSRF) via the Content Page Editor GSA_kwCzR0hTQS1obXJ4LTZwcjUtaHB3as4ABAkt

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
High
about 1 year ago

Liferay Portal and Liferay DXP Vulnerable to Cross-Site Request Forgery (CSRF) via the My Account Widget GSA_kwCzR0hTQS02YzR2LXg5djItcmptOM4ABAk1

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Critical
about 1 year ago

Liferay Portal and Liferay DXP Workflow Component Does Not Check User Permissions GSA_kwCzR0hTQS0zbWZxLWZwMmYtdndxaM4ABAkx

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Critical
almost 2 years ago

Liferay Portal and Liferay DXP's Users Admin module vulnerable to stored Cross-site Scripting GSA_kwCzR0hTQS12MnhxLW0yMnctam1wcs4AA5aH

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Critical
almost 2 years ago

Liferay Portal Message Board widget and Liferay DXP vulnerable to stored Cross-site Scripting GSA_kwCzR0hTQS1wMjh4LTRyNWgtcGg2as4AA5aJ

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Critical
almost 2 years ago

Liferay Portal and Liferay DXP vulnerable to Cross-site Scripting GSA_kwCzR0hTQS14cGpnLTdoeDctd2djeM4AA5aI

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Critical
almost 2 years ago

Liferay Portal Expando module and Liferay DXP vulnerable to stored Cross-site Scripting GSA_kwCzR0hTQS1jcjM2LTN2cWYteDV3Nc4AA5aK

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
almost 2 years ago

Liferay Portal and Liferay DXP User Enumeration Vulnerability GSA_kwCzR0hTQS1xbTQzLWcyeGotaHZnNc4AA5Y1

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
almost 2 years ago

Liferay Portal and Liferay DXP vulnerable to theft of hashed password GSA_kwCzR0hTQS14cTRyLTR4ZmgtdmNoOM4AA5ZB

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
almost 2 years ago

Liferay Portal vulnerable to Denial of Service GSA_kwCzR0hTQS0yOXh4LWZoZmYtMzZtN84AA5Yo

maven com.liferay.portal:release.portal.bom
Moderate
almost 2 years ago

Liferay Portal and Liferay DXP HTTP Header Can Expose Versions GSA_kwCzR0hTQS0ybXZqLXEycTMtd3hqds4AA5Yp

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Critical
almost 2 years ago

Liferay Portal has a Stored XSS with Blog entries (Insecure defaults) GSA_kwCzR0hTQS12dnBmLTUzcXgtY3hoaM4AA5Ym

maven com.liferay.portal:com.liferay.portal.web, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
almost 2 years ago

Liferay Portal and Liferay DXP's HtmlUtil.escapeRedirect Can Be Circumvented via Replacement Character GSA_kwCzR0hTQS01NDh4LWo2eDYtaGN2NM4AA5Yc

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
High
almost 2 years ago

Liferay Portal defaults to a low work factor for the default password hashing algorithm GSA_kwCzR0hTQS00M2g5LXAzajQtMzlobc4AA5Yf

maven com.liferay.portal:com.liferay.portal.kernel, com.liferay.portal:release.portal.bom, com.liferay.portal:release.dxp.bom
Moderate
almost 2 years ago

Liferay Portal and Liferay DXP's HtmlUtil.escapeRedirect Can Be Circumvented via Two Forward Slashes GSA_kwCzR0hTQS0zcXE1LXdjcngtNGg4cs4AA5Yk

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
almost 2 years ago

Liferay Portal and Liferay DXP Allows Authenticated Users with View Permissions to Edit Permissions GSA_kwCzR0hTQS1wdzdwLTM2NDgtcXFtZ84AA5YY

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
almost 2 years ago

Liferay Portal and Liferay DXP Allows Templates to be Viewed via the UI or API GSA_kwCzR0hTQS1tZjhoLWdyZmctajlqM84AA5YZ

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
High
almost 2 years ago

Liferay Portal has an XXE vulnerability in Java2WsddTask._format GSA_kwCzR0hTQS04NjloLXFoZngtdzkzOc4AA5Ya

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom, com.liferay.portal:com.liferay.util.java
Moderate
almost 2 years ago

Liferay Portal and Liferay DXP Does Not Properly Restrict Membership to Child Site Based on Parent Site Options GSA_kwCzR0hTQS1xcGdoLTZ2OXctdmZ2Ns4AA5YT

maven com.liferay.portal:release.portal.bom
Moderate
almost 2 years ago

Liferay Portal and Liferay DXP Information Disclosure Vulnerability in the Control Panel GSA_kwCzR0hTQS00NTg1LTI4djItOGg0Ns4AA5YU

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
almost 2 years ago

Privilege escalation in Liferay Portal GSA_kwCzR0hTQS1tYzhtLTRyM3ctcTJod84AA5YQ

maven com.liferay.portal:release.portal.bom
Moderate
almost 2 years ago

Liferay Portal and Liferay DXP Vulnerable to Open Redirect in Countries Management's Edit Region Page GSA_kwCzR0hTQS1mM3JmLWNyN2YtY3djNM4AA5YP

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
almost 2 years ago

Liferay Portal denial-of-service vulnerability GSA_kwCzR0hTQS13Mjc1LW04Y3ItaGYyds4AA5J4

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
almost 2 years ago

Liferay Portal allows attackers to discover the existence of sites GSA_kwCzR0hTQS1tcWY4LTRjcW0tcDgzeM4AA5J6

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
High
almost 2 years ago

Liferay Portal vulnerable to user impersonation GSA_kwCzR0hTQS1xd2o4LXFncHItOGNybc4AA5J7

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
almost 2 years ago

Liferay Portal's account lockout does not invalidate existing user sessions GSA_kwCzR0hTQS0ybXg3LXh2ZmctZmc1M84AA5J2

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Critical
almost 2 years ago

Liferay Portal stored cross-site scripting (XSS) vulnerability GSA_kwCzR0hTQS05dmdxLXc1cHYtdjc3cc4AA5JF

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
High
almost 2 years ago

Liferay Portal denial of service (memory consumption) GSA_kwCzR0hTQS04N20zLTZxajMtcDN4aM4AA5JH

maven com.liferay.portal:release.portal.bom
Critical
about 2 years ago

Liferay Portal XSS with `p_l_back_url_title` on edit content page GSA_kwCzR0hTQS12MzJtLXBmOXEtcDN4Z84AA3PR

maven com.liferay.portal:release.portal.bom
Moderate
over 2 years ago

Liferay Portal and Liferay DXP Vulnerable to XSS via the Layout Module GSA_kwCzR0hTQS1xeGY2LW1wMjQtNTJjds4AAz3v

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
High
over 2 years ago

Liferay Portal and Liferay DXP Vulnerable to CSRF via the Layout Module GSA_kwCzR0hTQS1wMmZjLXh4cjgtZnczcM4AAz3w

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 2 years ago

Liferay Portal and Liferay DXP Vulnerable to Open Redirect via the Layout Module GSA_kwCzR0hTQS0yMnc3LW01ZjgtODd2aM4AAz3y

maven com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom
Moderate
over 2 years ago

Insecure Default Initialization In Liferay Portal GSA_kwCzR0hTQS1nOW1yLTl4ZmMtNGdmN84AAzdc

maven com.liferay.portal:release.portal.bom
Moderate
over 2 years ago

Cross-site scripting in Liferay Portal GSA_kwCzR0hTQS1wZndjLTRmcmYtNGdmOM4AAzdV

maven com.liferay.portal:release.portal.bom
Moderate
over 2 years ago

Liferay portal has unauthorized access to object definition via search GSA_kwCzR0hTQS03NjljLXA5MnIteGd4as4AAzdR

maven com.liferay.portal:release.portal.bom
High
over 2 years ago

Missing authorization in Liferay portal GSA_kwCzR0hTQS13NmY4LW14ZjUtNHZmOM4AAzdU

maven com.liferay.portal:release.portal.bom
Moderate
over 2 years ago

Liferay Portal has Inefficient Regular Expression GSA_kwCzR0hTQS1jaHJjLXE2djMtamZ2OM4AAzdZ

maven com.liferay.portal:release.portal.bom
High
over 2 years ago

SQL injection in Liferay Portal GSA_kwCzR0hTQS1nN3Z3LTQzeGctOG00aM4AAzdQ

maven com.liferay.portal:release.portal.bom
Moderate
over 2 years ago

Liferay portal unauthorized access to objects via OAuth 2 scope GSA_kwCzR0hTQS0yODY4LWZmNDQtNDNxds4AAzdS

maven com.liferay.portal:release.portal.bom
Moderate
over 2 years ago

Cross-site scripting in Liferay Portal GSA_kwCzR0hTQS1tdmZ2LXczZnEteHA2N84AAzdA

maven com.liferay.portal:release.portal.bom
Moderate
over 2 years ago

Cross-site scripting in Liferay Portal GSA_kwCzR0hTQS12Nm0yLWo5MmotMmg3OM4AAzc9

maven com.liferay.portal:release.portal.bom
Moderate
over 2 years ago

Cross-site scripting in Liferay Portal GSA_kwCzR0hTQS01M213LTY5cXgtcTRmY84AAzdG

maven com.liferay.portal:release.portal.bom
Moderate
over 2 years ago

Cross-site scripting in Liferay Portal GSA_kwCzR0hTQS13djk5LXdtcGYtanJxcs4AAzdF

maven com.liferay.portal:release.portal.bom
Moderate
over 2 years ago

Cross-site scripting in Liferay Portal GSA_kwCzR0hTQS14ODJxLW1yMjMtMjdqY84AAzdH

maven com.liferay.portal:release.portal.bom
Moderate
over 2 years ago

Cross-site scripting in Liferay Portal GSA_kwCzR0hTQS13dmh3LTVtODktNjRnds4AAzdD

maven com.liferay.portal:release.portal.bom
Moderate
over 2 years ago

Cross-site scripting in Liferay Portal GSA_kwCzR0hTQS1wOXhnLTkzNzgtY3FwN84AAzdB

maven com.liferay.portal:release.portal.bom
High
about 3 years ago

Path Traversal in Liferay Portal GSA_kwCzR0hTQS1oZmZ4LXIyODItdzJnOc4AAv3t

maven com.liferay.portal:release.portal.bom
High
about 3 years ago

Path Traversal in Liferay Portal GSA_kwCzR0hTQS1nOGhwLXJjNjctamY5Ns4AAv3u

maven com.liferay.portal:release.portal.bom
Moderate
about 3 years ago

Improper Certificate Validation in Liferay Portal GSA_kwCzR0hTQS1jeDg0LTQzeGMtM2dtMs4AAv3k

maven com.liferay.portal:release.portal.bom
Moderate
about 3 years ago

Incorrect Default Permissions in Liferay Portal GSA_kwCzR0hTQS13Z3FtLXFwNDQtY2c2eM4AAv3y

maven com.liferay.portal:release.portal.bom
Moderate
about 3 years ago

Missing permissions check in Liferay Portal GSA_kwCzR0hTQS02NDJoLW14OHEtNDdwMs4AAv3z

maven com.liferay.portal:release.portal.bom
Moderate
about 3 years ago

Incorrect Default Permissions in Liferay Portal GSA_kwCzR0hTQS1teHZxLWN2NHgtcDNqd84AAv3m

maven com.liferay.portal:release.portal.bom
Moderate
about 3 years ago

Liferay Portal and Liferay DXP Includes LDAP Credentials in the Page URL GSA_kwCzR0hTQS1mNDNtLWhoajQtcTNqZ84AAv32

maven com.liferay:com.liferay.portal.settings.authentication.ldap.web, com.liferay.portal:release.dxp.bom, com.liferay.portal:release.portal.bom

Filter by Severity

Moderate 114 High 25 Critical 11 Low 1