Количество 2
Количество 2
CVE-2022-28982
больше 3 лет назад
A cross-site scripting (XSS) vulnerability in Liferay Portal v7.3.3 through v7.4.2 and Liferay DXP v7.3 before service pack 3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name of a tag.
CVSS3: 6.1
EPSS: Низкий
GHSA-wffm-j7m8-93g4
больше 3 лет назад
Liferay Portal and Liferay DXP Vulnerable to XSS via Tag Name
CVSS3: 6.1
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-28982 A cross-site scripting (XSS) vulnerability in Liferay Portal v7.3.3 through v7.4.2 and Liferay DXP v7.3 before service pack 3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the name of a tag. | CVSS3: 6.1 | 0% Низкий | больше 3 лет назад |
| GHSA-wffm-j7m8-93g4 Liferay Portal and Liferay DXP Vulnerable to XSS via Tag Name | CVSS3: 6.1 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу
20