VYPR

Maven package

com.liferay/com.liferay.dynamic.data.mapping.form.web

pkg:maven/com.liferay/com.liferay.dynamic.data.mapping.form.web

Vulnerabilities (3)

  • CVE-2025-43762Aug 22, 2025
    affected < 4.0.180fixed 4.0.180

    Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.1, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14 and 7.4 GA through update 92 allow users to upload an unlimited amount of fil

  • CVE-2025-43750Aug 20, 2025
    affected < 4.0.180fixed 4.0.180

    Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.1, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.14 and 7.4 GA through update 92 allows remote unauthenticated users (guests) to

  • CVE-2021-33323Aug 3, 2021
    affected < 3.0.23fixed 3.0.23

    The Dynamic Data Mapping module in Liferay Portal 7.1.0 through 7.3.2, and Liferay DXP 7.1 before fix pack 19, and 7.2 before fix pack 7, autosaves form values for unauthenticated users, which allows remote attackers to view the autosaved values by viewing the form as an unauthen