Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / liferay

liferay

340 tracked vulnerabilities.

Liferay Portal CE <6.0.6 - Info Disclosure

Liferay Portal 6.0.0-6.0.5 - Authenticated XML External Entity Injection

CVE-2010-5327 HIGH

Liferay Portal <6.2.10 - Command Injection

Liferay Portal < 5.2.3 - Cross-Site Scripting via p_p_id Parameter

Novell Teaming 1.0-1.0.3 - Cross-Site Scripting via p_p_state or p_p_mode Parameters

Liferay Enterprise Portal 4.3.6 - Authenticated Cross-Site Scripting via User-Agent HTTP Header

Liferay Enterprise Portal 4.3.6 - Cross-Site Scripting via User-Agent HTTP Header

Liferay Enterprise Portal 4.3.6 - Authenticated Cross-Site Scripting via User Profile Greeting Field

Liferay Enterprise Portal 4.3.6 - Authenticated Cross-Site Scripting via Shutdown Message

Liferay Enterprise Portal < 4.3.6 - Authenticated Cross-Site Request Forgery via Shutdown Message

Liferay Portal 4.3.6 - Cross-Site Request Forgery via User-Agent HTTP Header

Liferay Enterprise Portal 4.3.1 - XSS

Liferay Portal 4.1.0 and 4.1.1 - Cross-Site Scripting via Login Parameter

Liferay Portal Enterprise <3.6.1 - XSS

Liferay Enterprise Portal < 2.2.0 - Cross-Site Scripting via Message Subject

Previous Page 14 of 14

Products

liferay_portal 319 digital_experience_platform 264 dxp 39 liferay_enterprise_portal 9 DXP 2 Portal 2 portal 2 liferay 1 liferay_portal_enterprise 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy