VYPR

Maven package

com.liferay/com.liferay.plugins.admin.web

pkg:maven/com.liferay/com.liferay.plugins.admin.web

Vulnerabilities (1)

  • CVE-2025-43769Aug 23, 2025
    affected < 5.0.36fixed 5.0.36

    Stored cross-site scripting (XSS) vulnerability in Liferay Portal 7.4.0 through 7.4.3.131, and Liferay DXP 2024.Q3.1 through 2024.Q3.8, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.12 and 7.4 GA through update 92 allows remote attackers to execute arbitrary web script