Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the Layout module's page administration page in Liferay Portal 7.3.4, 7.3.5 and Liferay DXP 7.2 before fix pack 11 and 7.3 before fix pack 1 allows remote attackers to inject arbitrary web script or HTML via the _com_liferay_layout_admin_web_portlet_GroupPagesPortlet_name parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Liferay Enterprise Portal 跨站脚本漏洞
Vulnerability Description
Liferay Enterprise Portal是美国Liferay公司的一个应用系统。提供一个展示电子商务功能。 Liferay Enterprise Portal 存在跨站脚本漏洞。该漏洞源于程序布局模块的管理页面中对用户提供的数据处理不充分。以下产品及版本受到影响:7.3.4 ga5, 7.3.5 ga6。
CVSS Information
N/A
Vulnerability Type
N/A