CVE-2019-16147
published 2019-09-09CVE-2019-16147: Liferay Portal through 7.2.0 GA1 allows XSS via a journal article title to journal_article/page.jsp in journal/journal-taglib.
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
Liferay Portal through 7.2.0 GA1 allows XSS via a journal article title to journal_article/page.jsp in journal/journal-taglib.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| liferay | liferay_portal | < 7.2.0 | 7.2.0 |
| liferay | liferay_portal | — | — |