Unrated severityNVD Advisory· Published Feb 5, 2008· Updated Apr 23, 2026

CVE-2008-0182

Description

Cross-site request forgery (CSRF) vulnerability in the Admin portlet in Liferay Portal before 4.4.0 allows remote authenticated users to perform unspecified actions as unspecified other authenticated users via the Shutdown message.

Affected products

Liferay/Liferay Enterprise Portal
cpe:2.3:a:liferay:liferay_enterprise_portal:*:*:*:*:*:*:*:*
Range: <=4.3.6

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/28742nvdVendor Advisory
www.kb.cert.org/vuls/id/767825nvdUS Government Resource
support.liferay.com/browse/LEP-4739nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000