CVE-2008-0181

CVE-2008-0181

EPSS 1.2%

Cross-site scripting (XSS) vulnerability in the Admin portlet in Liferay Portal 4.3.6 allows remote authenticated users to inject arbitrary web script or HTML via the Shutdown message.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://secunia.com/advisories/28742 http://support.liferay.com/browse/LEP-4739 http://www.kb.cert.org/vuls/id/217825 http://www.securityfocus.com/bid/27554