Maven package
com.liferay/com.liferay.frontend.taglib
pkg:maven/com.liferay/com.liferay.frontend.taglib
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-43736 | — | < 13.10.0 | 13.10.0 | Aug 12, 2025 | A Denial Of Service via File Upload (DOS) vulnerability in the Liferay Portal 7.4.3.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.8, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.16 and 7.4 GA t | ||
| CVE-2017-12648 | Med | 6.1 | < 2.1.3 | 2.1.3 | Aug 7, 2017 | XSS exists in Liferay Portal before 7.0 CE GA4 via a bookmark URL. |
- CVE-2025-43736Aug 12, 2025affected < 13.10.0fixed 13.10.0
A Denial Of Service via File Upload (DOS) vulnerability in the Liferay Portal 7.4.3.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.8, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.0 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.16 and 7.4 GA t
- affected < 2.1.3fixed 2.1.3
XSS exists in Liferay Portal before 7.0 CE GA4 via a bookmark URL.