Unrated severityNVD Advisory· Published May 22, 2004· Updated Jun 16, 2026
CVE-2004-2030
CVE-2004-2030
Description
Multiple cross-site scripting (XSS) vulnerabilities in index.jsp for Liferay before 2.2.0 release 10/1/2004 allow remote attackers to inject arbitrary web script or HTML, as demonstrated using the message subject.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:liferay:liferay_enterprise_portal:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:liferay:liferay_enterprise_portal:*:*:*:*:*:*:*:*range: <=2.1.1
- cpe:2.3:a:liferay:liferay_enterprise_portal:2.1.0:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
8- www.osvdb.org/6346nvdPatchVendor Advisory
- www.securityfocus.com/bid/10402nvdPatchVendor Advisory
- secunia.com/advisories/11692nvdVendor Advisory
- marc.infonvd
- marc.infonvd
- securitytracker.com/idnvd
- sourceforge.net/project/shownotes.phpnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/16232nvd
News mentions
0No linked articles in our index yet.