Количество 2
Количество 2
CVE-2022-42111
A Cross-site scripting (XSS) vulnerability in the Sharing module's user notification in Liferay Portal 7.2.1 through 7.4.2, and Liferay DXP 7.2 before fix pack 19, and 7.3 before update 4 allows remote attackers to inject arbitrary web script or HTML by sharing an asset with a crafted payload.
GHSA-p768-r2m2-8vjr
Liferay Portal and Liferay DXP Vulnerable to XSS via the Sharing Module
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-42111 A Cross-site scripting (XSS) vulnerability in the Sharing module's user notification in Liferay Portal 7.2.1 through 7.4.2, and Liferay DXP 7.2 before fix pack 19, and 7.3 before update 4 allows remote attackers to inject arbitrary web script or HTML by sharing an asset with a crafted payload. | CVSS3: 5.4 | 0% Низкий | около 3 лет назад |
| GHSA-p768-r2m2-8vjr Liferay Portal and Liferay DXP Vulnerable to XSS via the Sharing Module | CVSS3: 5.4 | 0% Низкий | около 3 лет назад |
Уязвимостей на страницу