CVE-2025-62238 | Liferay Portal/DXP Membership Page Name cross site scripting

Inserito da Angelo Barbosa | Ott 10, 2025 | CVE

A vulnerability classified as problematic was found in Liferay Portal and DXP. Affected by this issue is some unknown functionality of the component Membership Page. Executing manipulation of the argument Name can lead to cross site scripting.

This vulnerability is tracked as CVE-2025-62238. The attack can be launched remotely. No exploit exists.

CVE-2025-62238 | Liferay Portal/DXP Membership Page Name cross site scripting

Post correlati

CVE-2025-54248 | Adobe Experience Manager up to 6.5.23.0 information disclosure (apsb25-90)

CVE-2024-31878 | IBM i 7.2/7.3/7.4/7.5 Service Tools Server information exposure (XFDB-287538)

CVE-2024-45474 | Siemens Tecnomatix Plant Simulation V2404 prior 2302.0016 WRL File memory corruption (ssa-583523)

CVE-2024-30303 | Adobe Acrobat Reader up to 20.005.30539/23.008.20470 use after free (apsb24-07)