VYPR

Maven package

com.liferay/com.liferay.layout.taglib

pkg:maven/com.liferay/com.liferay.layout.taglib

Vulnerabilities (2)

  • CVE-2025-43753Aug 21, 2025
    affected < 16.1.32fixed 16.1.32

    A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.3.32 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.7, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.1 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.16 and 7.4 update

  • CVE-2025-43733Aug 18, 2025
    affected < 17.0.0fixed 17.0.0

    A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.7 allows a remote authenticated attacker to inject JavaScript code via the content page's name field. This malicious payload is then reflected and execu