Maven package
com.liferay/com.liferay.roles.admin.web
pkg:maven/com.liferay/com.liferay.roles.admin.web
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-42114 | — | < 5.0.48 | 5.0.48 | Oct 18, 2022 | A Cross-site scripting (XSS) vulnerability in the Role module's edit role assignees page in Liferay Portal 7.4.0 through 7.4.3.36, and Liferay DXP 7.4 before update 37 allows remote attackers to inject arbitrary web script or HTML. |
- CVE-2022-42114Oct 18, 2022affected < 5.0.48fixed 5.0.48
A Cross-site scripting (XSS) vulnerability in the Role module's edit role assignees page in Liferay Portal 7.4.0 through 7.4.3.36, and Liferay DXP 7.4 before update 37 allows remote attackers to inject arbitrary web script or HTML.