VYPR

Maven package

com.liferay/com.liferay.mentions.web

pkg:maven/com.liferay/com.liferay.mentions.web

Vulnerabilities (1)

  • CVE-2025-62246Oct 13, 2025
    affected < 6.0.35fixed 6.0.35

    Multiple stored cross-site scripting (XSS) vulnerabilities in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.8, 7.4 GA through update 92, and older unsupported versions allow remote au