VYPR

Maven package

com.liferay/com.liferay.headless.batch.engine.impl

pkg:maven/com.liferay/com.liferay.headless.batch.engine.impl

Vulnerabilities (1)

  • CVE-2025-43806Sep 22, 2025
    affected < 4.0.52fixed 4.0.52

    Batch Engine in Liferay Portal 7.4.0 through 7.4.3.112, and Liferay DXP 2023.Q4.0 through 2023.Q4.7, 2023.Q3.1 through 2023.Q3.10, and 7.4 GA through update 92 does not properly check permission with import and export tasks, which allows remote authenticated users to access the e