Описание
Open Redirect in Liferay Portal
The redirect module in Liferay Portal before 7.3.3 does not limit the number of URLs resulting in a 404 error that is recorded, which allows remote attackers to perform a denial of service attack by making repeated requests for pages that do not exist.
Пакеты
Наименование
com.liferay.portal:release.portal.bom
maven
Затронутые версииВерсия исправления
< 7.3.3
7.3.3
Связанные уязвимости
CVSS3: 7.5
nvd
больше 5 лет назад
The redirect module in Liferay Portal before 7.3.3 does not limit the number of URLs resulting in a 404 error that is recorded, which allows remote attackers to perform a denial of service attack by making repeated requests for pages that do not exist.