22 Sep 2022
Vulnérabilité CVE-2022-28979 CVE Vulnerability
Liferay Portal v7.1.0 through v7.4.2 and Liferay DXP v7.3 before service pack 3 was discovered to contain a cross-site scripting (XSS) vulnerability in the Portal Search module's Custom Facet widget. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Custom Parameter Name text field. (CVSS:0.0) (Last Update:2022-09-22)
Vulnerability Details : Liferay Portal v7.1.0 through v7.4.2 and Liferay DXP v7.3 before service pack 3 was discovered to contain a cross-site scripting (XSS) vulnerability in the Portal Search module's Custom Facet widget. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Custom Parameter Name text field. Publish Date : 2022-09-22 Last Update Date : 2022-09-22 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2022-28979
- References For CVE-2022-28979
| |||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2022-28979There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |