VYPR

Maven package

com.liferay/com.liferay.batch.engine.service

pkg:maven/com.liferay/com.liferay.batch.engine.service

Vulnerabilities (1)

  • CVE-2025-43806Sep 22, 2025
    affected < 4.0.102fixed 4.0.102

    Batch Engine in Liferay Portal 7.4.0 through 7.4.3.112, and Liferay DXP 2023.Q4.0 through 2023.Q4.7, 2023.Q3.1 through 2023.Q3.10, and 7.4 GA through update 92 does not properly check permission with import and export tasks, which allows remote authenticated users to access the e