Description
The Layout module in Liferay Portal 7.1.0 through 7.3.2, and Liferay DXP 7.1 before fix pack 19, and 7.2 before fix pack 6, exposes the CSRF token in URLs, which allows man-in-the-middle attackers to obtain the token and conduct Cross-Site Request Forgery (CSRF) attacks via the p_auth parameter.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://portal.liferay.dev/learn/security/known-vulnerabilities/-/asset_publisher/HbL5mxmVrnXW/content/id/120748276
Issue Tracking, Vendor Advisory x_refsource_confirm
https://issues.liferay.com/browse/LPE-17030
Scores
CVSS v3
7.5
EPSS
0.0011
EPSS Percentile
28.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-352
Status
published
Products (5)
com.liferay.portal/release.dxp.bom
7.1.0 - 7.1.10.fp19Maven
com.liferay.portal/release.portal.bom
7.1.0 - 7.3.3Maven
liferay/digital_experience_platform
7.1 (19 CPE variants)
liferay/digital_experience_platform
7.2 (6 CPE variants)
liferay/liferay_portal
7.1.0 - 7.3.2
Published
Aug 04, 2021
Tracked Since
Feb 18, 2026