VYPR

Maven package

com.liferay.workspace/com.liferay.ticket.workspace

pkg:maven/com.liferay.workspace/com.liferay.ticket.workspace

Vulnerabilities (1)

  • CVE-2025-43802Sep 15, 2025
    affected < 20240122.0632fixed 20240122.0632

    Stored cross-site scripting (XSS) vulnerability in a custom object’s /o/c/ API endpoint in Liferay Portal 7.4.3.51 through 7.4.3.109, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 update 51 through update 92, and 7.3 update 33 through update 35. allows remote atta