VYPR

Maven package

com.liferay/com.liferay.contacts.web

pkg:maven/com.liferay/com.liferay.contacts.web

Vulnerabilities (1)

  • CVE-2025-43803Sep 19, 2025
    affected < 5.0.59fixed 5.0.59

    Insecure direct object reference (IDOR) vulnerability in the Contacts Center widget in Liferay Portal 7.4.0 through 7.4.3.119, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.6, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupporte