Moderate severityNVD Advisory· Published May 7, 2011· Updated Jun 16, 2026
CVE-2011-1571
CVE-2011-1571
Description
Unspecified vulnerability in the XSL Content portlet in Liferay Portal Community Edition (CE) 5.x and 6.x before 6.0.6 GA, when Apache Tomcat is used, allows remote attackers to execute arbitrary commands via unknown vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
com.liferay.portal:portal-serviceMaven | >= 5.0.0, < 6.0.6-ga | 6.0.6-ga |
Affected products
2Patches
Vulnerability mechanics
References
8- issues.liferay.com/browse/LPS-14726nvdIssue TrackingVendor AdvisoryWEB
- issues.liferay.com/secure/ReleaseNote.jspanvdRelease NotesVendor AdvisoryWEB
- openwall.com/lists/oss-security/2011/03/29/1nvdMailing ListThird Party AdvisoryWEB
- openwall.com/lists/oss-security/2011/04/08/5nvdMailing ListThird Party AdvisoryWEB
- openwall.com/lists/oss-security/2011/04/11/9nvdMailing ListThird Party AdvisoryWEB
- github.com/advisories/GHSA-rpj9-pc39-h8j8ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2011-1571ghsaADVISORY
- github.com/liferay/liferay-portal/commit/55502ca16019e1ea1a581ee87f4f20cde638c825ghsaWEB
News mentions
0No linked articles in our index yet.