CVE-2025-62254 | Liferay Portal/DXP ComboServlet path traversal

Inserito da Angelo Barbosa | Ott 23, 2025 | CVE

A vulnerability identified as critical has been detected in Liferay Portal and DXP. This issue affects some unknown processing of the component ComboServlet. Performing manipulation results in path traversal.

This vulnerability is identified as CVE-2025-62254. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-62254 | Liferay Portal/DXP ComboServlet path traversal

Post correlati

CVE-2024-30928 | jeffpiazza DerbyNet 9.0 query.slide.next.inc classids sql injection

CVE-2024-29413 | Webasyst 2.9.9 Contact Info Instant messenger cross site scripting

CVE-2024-7331 | TOTOLINK A3300R 17.0.0cu.557_B20221024 /cgi-bin/cstecgi.cgi UploadCustomModule File buffer overflow

CVE-2024-28989 | SolarWinds Web Help Desk up to 12.8.4 hard-coded key