A vulnerability, which was classified as problematic, was found in Liferay Portal and DXP. This affects an unknown part of the component DDMForm. The manipulation of the argument instanceId leads to cross site scripting.
This vulnerability is uniquely identified as CVE-2024-25603. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to apply a patch to fix this issue.