216.73.217.64

CVE-2024-11993

· Published 17/12/2024 21:15 · Modified 17/12/2024 21:15

Labels: CVE-2024-11993 2024-12-17CVE-2024-11993CWE-79[email protected]

Essential information

Published
17/12/2024 21:15
Modified
17/12/2024 21:15
Author
Creator
CISA KEV
No
CWE

Description

Reflected cross-site scripting (XSS) vulnerability in Liferay Portal 7.1.0 through 7.4.3.38, and Liferay DXP 7.4 GA through update 38, 7.3 GA through update 36, 7.2 GA through fix pack 20 and 7.1 GA through fix pack 28 allows remote attackers to execute arbitrary web script or HTML via Dispatch name field

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References