The redirect module in Liferay Portal before 7.3.3 does not limit the number of URLs resulting in a 404 error that is recorded, which allows remote attackers to perform a denial of service attack by making repeated requests for pages that do not exist.
CPE | Name | Operator | Version |
---|---|---|---|
liferay_portal | lt | 7.3.3 |