ValBrux ( ͡° ͜ʖ ͡°)

Tag

CVE-2019-6588

CVE-2019-6588 – Liferay Portal < 7.1 CE GA4 / SimpleCaptcha API XSS

Introduction In Liferay Portal before 7.1 CE GA4, an XSS vulnerability exists in the SimpleCaptcha API when custom code passes unsanitized input into the “url” parameter of the JSP taglib call <liferay-ui:captcha url=”<%= url %>” /> or <liferay-captcha:captcha url=”<%= url… Continue Reading →

© 2019 Valbrux — Powered by WordPress