Количество 2
Количество 2
CVE-2025-43756
<!--td {border: 1px solid #cccccc;}br {mso-data-placement:same-cell;}-->A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.15, 2025.Q2.0 through 2025.Q2.2 and 2024.Q1.13 through 2024.Q1.19 allows a remote authenticated user to inject JavaScript code via snippet parameter.
GHSA-q2gv-w583-f2vq
Liferay Portal Reflected Cross-Site Scripting Vulnerability via snippet Parameter
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-43756 <!--td {border: 1px solid #cccccc;}br {mso-data-placement:same-cell;}-->A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.15, 2025.Q2.0 through 2025.Q2.2 and 2024.Q1.13 through 2024.Q1.19 allows a remote authenticated user to inject JavaScript code via snippet parameter. | CVSS3: 5.4 | 0% Низкий | 6 месяцев назад |
| GHSA-q2gv-w583-f2vq Liferay Portal Reflected Cross-Site Scripting Vulnerability via snippet Parameter | 0% Низкий | 6 месяцев назад |
Уязвимостей на страницу