Lucene search
PRIOn knowledge basePRION:CVE-2021-33332HistoryAug 03, 2021 - 9:15 p.m.
Cross site scripting
2021-08-0321:15:00
PRIOn knowledge base
www.prio-n.com
1
0.001 Low
EPSS
Percentile
46.6%
Cross-site scripting (XSS) vulnerability in the Portlet Configuration module in Liferay Portal 7.1.0 through 7.3.2, and Liferay DXP 7.1 before fix pack 19, and 7.2 before fix pack 7, allows remote attackers to inject arbitrary web script or HTML via the _com_liferay_portlet_configuration_css_web_portlet_PortletConfigurationCSSPortlet_portletResource parameter.
| CPE | Name | Operator | Version |
|---|---|---|---|
| dxp | eq | 7.2 fixpack2 | |
| dxp | eq | 7.2 fixpack3 | |
| dxp | eq | 7.2 fixpack4 | |
| dxp | eq | 7.2 fixpack5 | |
| dxp | eq | 7.2 fixpack1 | |
| dxp | eq | 7.1 fixpack6 | |
| dxp | eq | 7.1 fixpack7 | |
| dxp | eq | 7.1 fixpack8 | |
| dxp | eq | 7.1 fixpack9 | |
| dxp | eq | 7.1 fixpack10 |
Related
nvd
nvd
CVE-2021-33332
2021-08-03 21:15:08
cvelist
cvelist
CVE-2021-33332
2021-08-03 20:58:01
osv
osv
CVE-2021-33332
2021-08-03 21:15:08
cnvd
cnvd
Liferay Portal and Liferay DXP Cross-Site Scripting Vulnerability
2021-08-05 00:00:00
cve
cve
CVE-2021-33332
2021-08-03 21:15:08