Liferay Portal "emailAddress" Cross-Site Scripting

Liferay Portal "emailAddress" Cross-Site Scripting
BugsAlert Home > Liferay Portal "emailAddress" Cross-Site Scripting




Joshua Morin has reported a vulnerability in Liferay Portal, which can be exploited by malicious people to conduct cross-site scripting attacks. Be sure to check if your system is missing security updates or have insecure applications installed: http://secunia.com/software_inspector/ Feature Overview - The Secunia Software Inspector: * Detects insecure versions of applications installed * Verifies that all Microsoft patches are applied * Assists you in updating your system and applications * Runs through your browser. No installation or download is required. Original Source: http://secunia.com/advisories/27821/ Learn more about Liferay Portal "emailAddress" Cross-Site Scripting


Tags: liferay portal emailaddress cross-site scripting

Related Items
CVE-2008-0014 (serverprotect)
RoundCube Webmail Script Insertion Vulnerability
Two annoying Avira traits
CVE-2008-2483 (xomol_cms)
PenPal Three SQL Injection Vulnerabilities
SocksCap Stack Overflow (<= 2.40-051231)
Debian: New python2.4 packages fix several vulnerabilities