CVE-2025-43757 | Liferay Portal/DXP cross site scripting

Inserito da Angelo Barbosa | Ago 20, 2025 | CVE

A vulnerability categorized as problematic has been discovered in Liferay Portal and DXP. This issue affects some unknown processing. The manipulation of the argument _com_liferay_dynamic_data_mapping_web_portlet_DDMPortlet_definition results in cross site scripting.

This vulnerability is cataloged as CVE-2025-43757. The attack may be launched remotely. There is no exploit available.

CVE-2025-43757 | Liferay Portal/DXP cross site scripting

Post correlati

CVE-2024-30214 | SAP Business Connector 4.8 GET Query Parameter cross site scripting

CVE-2024-7616 | Edimax IC-6220DC/IC-5150W up to 3.06 ipcam_cgi cgiFormString host command injection

CVE-2024-1557 | Mozilla Firefox 122 memory corruption

CVE-2025-49763 | Apache Traffic Server up to 9.2.10/10.0.5 ESI Plugin memory allocation