Liferay

338 tracked vulnerabilities.

CVE-2025-62275 MEDIUM
Liferay Digital Experience Platform - Incorrect Authorization
Nov 01, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-62276 MEDIUM
Liferay Portal <7.4.3.111 - Info Disclosure
Nov 01, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-62267 MEDIUM
Liferay Digital Experience Platform < 7.4.3.112 - XSS
Oct 31, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-62264 MEDIUM
Liferay Digital Experience Platform < 7.4.3.112 - XSS
Oct 31, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-62265 MEDIUM
Liferay Digital Experience Platform < 7.4 - XSS
Oct 30, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-62266 MEDIUM
Liferay Digital Experience Platform < 7.4.3.110 - Open Redirect
Oct 30, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-62257 MEDIUM
Liferay Digital Experience Platform < 7.4 - Brute Force
Oct 30, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-62259 MEDIUM
Liferay Digital Experience Platform < 7.0 - Incorrect Authorization
Oct 27, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-62258 MEDIUM
Liferay Digital Experience Platform < 7.4.3.108 - CSRF
Oct 27, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-62261 MEDIUM
Liferay Digital Experience Platform < 7.4.3.100 - Cleartext Storage
Oct 27, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-62260 HIGH
Liferay Digital Experience Platform < 7.4.3.99 - Denial of Service
Oct 27, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-62262 MEDIUM
Liferay Digital Experience Platform - Log Information Exposure
Oct 27, 2025
CVSS 4.4
EPSS 0.00
CVE-2025-62263 MEDIUM
Liferay Digital Experience Platform < 7.4.3.104 - XSS
Oct 27, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-62253 MEDIUM
Liferay Digital Experience Platform < 7.3 - Open Redirect
Oct 27, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-62254 HIGH
Liferay Digital Experience Platform < 7.4.3.111 - Path Traversal
Oct 23, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-62255 MEDIUM
Liferay Digital Experience Platform < 7.3 - XSS
Oct 23, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-62256 MEDIUM
Liferay Digital Experience Platform - Missing Authorization
Oct 23, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-62247 MEDIUM
Liferay Digital Experience Platform - Missing Authorization
Oct 22, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-62248 MEDIUM
Liferay Digital Experience Platform < 2024.q1.20 - XSS
Oct 22, 2025
CVSS 4.8
EPSS 0.00
CVE-2025-62249 MEDIUM
Liferay Digital Experience Platform < 2023.q4.10 - XSS
Oct 21, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-62250 MEDIUM
Liferay Digital Experience Platform < 7.3 - Origin Validation Error
Oct 21, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-62251 MEDIUM
Liferay Digital Experience Platform - Incorrect Permission Assignment
Oct 13, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-62252 MEDIUM
Liferay Digital Experience Platform < 7.4 - IDOR
Oct 13, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-62246 MEDIUM
Liferay Digital Experience Platform < 7.4 - XSS
Oct 13, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-62242 MEDIUM
Liferay Digital Experience Platform < 7.4.3.112 - IDOR
Oct 13, 2025
CVSS 4.3
EPSS 0.00
Products
liferay_portal 319 digital_experience_platform 264 dxp 39 liferay_enterprise_portal 9 portal 2 liferay 1 liferay_portal_enterprise 1
Quick Filters
Critical CVEs With Exploits In CISA KEV