cbcvebase.
CVE-2017-12645
published 2017-08-07

CVE-2017-12645: XSS exists in Liferay Portal before 7.0 CE GA4 via an invalid portletId.

medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
XSS exists in Liferay Portal before 7.0 CE GA4 via an invalid portletId.

Affected

1 ranges
VendorProductVersion rangeFixed in
liferayliferay_portal<= 7.0