CVE-2019-6588
MEDIUMLiferay Portal < 6.0.6 - XSS
Title source: ruleDescription
In Liferay Portal before 7.1 CE GA4, an XSS vulnerability exists in the SimpleCaptcha API when custom code passes unsanitized input into the "url" parameter of the JSP taglib call <liferay-ui:captcha url="<%= url %>" /> or <liferay-captcha:captcha url="<%= url %>" />. Liferay Portal out-of-the-box behavior with no customizations is not vulnerable.
Exploits (1)
exploitdb
WORKING POC
by Valerio Brussani · textwebappsjsp
https://www.exploit-db.com/exploits/46983
References (2)
Scores
CVSS v3
4.7
EPSS
0.0069
EPSS Percentile
71.9%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N
Details
CWE
CWE-79
Status
published
Products (12)
com.liferay.portal/release.portal.bom
0 - 7.1.0Maven
liferay/liferay_portal
6.1.0 b1 (6 CPE variants)
liferay/liferay_portal
6.1.1 ga2
liferay/liferay_portal
6.1.2 ga3
liferay/liferay_portal
6.2.0 b1 (15 CPE variants)
liferay/liferay_portal
6.2.1 ga2
liferay/liferay_portal
6.2.2 ga3
liferay/liferay_portal
6.2.3 ga4
liferay/liferay_portal
6.2.4 ga5
liferay/liferay_portal
6.2.5 ga6
... and 2 more
Published
Jun 03, 2019
Tracked Since
Feb 18, 2026