Filter
AND
AND
-Infinity
0

Trending

Last week
Last month
Last year

maven/com.liferay.portal:release.dxp.bomXSS

medium
4.8
EPSS
0.20%
First published (updated )
CVE-2025-3760

maven/com.liferay.portal:release.dxp.bomThe data exposure vulnerability in Liferay Portal 7.4.0 through 7.4.3.126, and Liferay DXP 2024.Q3.0…

medium
5.1
EPSS
0.04%
First published (updated )
CVE-2025-2565

maven/com.liferay.portal:release.dxp.bomXSS

medium
5.1
First published (updated )
CVE-2025-2536

Liferay 7.4 GAXSS

medium
4.8
First published (updated )
CVE-2023-37940

Liferay 7.4 GAXSS

medium
6.1
First published (updated )
CVE-2024-11993

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Liferay 7.4 GAXSS

medium
5.4
EPSS
0.04%
First published (updated )
CVE-2024-25151

Liferay 7.4 GAThe Account Settings page in Liferay Portal 7.4.3.76 through 7.4.3.99, and Liferay DXP 2023.Q3 befor…

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2024-26270

Liferay 7.4 GAUser enumeration vulnerability in Liferay Portal 7.2.0 through 7.4.3.26, and older unsupported versi…

medium
5.3
EPSS
0.04%
First published (updated )
CVE-2024-26268

Liferay 7.4 GAIn Liferay Portal 7.2.0 through 7.4.3.25, and older unsupported versions, and Liferay DXP 7.4 before…

medium
5.3
EPSS
0.04%
First published (updated )
CVE-2024-26267

Liferay 7.4 GAThe Image Uploader module in Liferay Portal 7.2.0 through 7.4.3.15, and older unsupported versions, …

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2024-26265

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Liferay 7.4 GAHtmlUtil.escapeRedirect in Liferay Portal 7.2.0 through 7.4.3.12, and older unsupported versions, an…

medium
6.1
EPSS
0.06%
First published (updated )
CVE-2024-25609

Liferay 7.4 GAHtmlUtil.escapeRedirect in Liferay Portal 7.2.0 through 7.4.3.18, and older unsupported versions, an…

medium
6.1
EPSS
0.06%
First published (updated )
CVE-2024-25608

Liferay 7.4 GAThe Journal module in Liferay Portal 7.2.0 through 7.4.3.4, and older unsupported versions, and Life…

medium
5.3
EPSS
0.04%
First published (updated )
CVE-2024-25605

Liferay 7.4 GALiferay Portal 7.2.0 through 7.4.3.4, and older unsupported versions, and Liferay DXP 7.4.13, 7.3 be…

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2024-25604

Liferay 7.4 GAInformation disclosure vulnerability in the Control Panel in Liferay Portal 7.2.0 through 7.4.2, and…

medium
4.3
EPSS
0.04%
First published (updated )
CVE-2024-25150

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Liferay 7.4 GALiferay Portal 7.2.0 through 7.4.1, and older unsupported versions, and Liferay DXP 7.3 before servi…

medium
5.4
EPSS
0.04%
First published (updated )
CVE-2024-25149

Liferay 7.4 GAOpen redirect vulnerability in adaptive media administration page in Liferay DXP 2023.Q3 before patc…

medium
6.1
First published (updated )
CVE-2023-44308

Liferay 7.4 GAOpen redirect vulnerability in the Countries Management’s edit region page in Liferay Portal 7.4.3.4…

medium
6.1
First published (updated )
CVE-2023-5190

Liferay 7.4 GALiferay Portal before 7.4.3.16 and Liferay DXP before 7.2 fix pack 19, 7.3 before update 6, and 7.4 …

medium
6.3
First published (updated )
CVE-2022-45320

Liferay 7.4 GALiferay Portal 7.2.0 through 7.3.5, and older unsupported versions, and Liferay DXP 7.3 before fix p…

medium
6.3
First published (updated )
CVE-2021-29038

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Liferay 7.4 GALiferay Portal 7.2.0 through 7.4.1, and older unsupported versions, and Liferay DXP 7.3 before servi…

medium
5.3
EPSS
0.05%
First published (updated )
CVE-2024-25146

Liferay 7.4 GAThe IFrame widget in Liferay Portal 7.2.0 through 7.4.3.26, and older unsupported versions, and Life…

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2024-25144

Liferay 7.4 GAAccount lockout in Liferay Portal 7.2.0 through 7.3.0, and older unsupported versions, and Liferay D…

medium
5.4
First published (updated )
CVE-2023-47798

Liferay 7.4 GAThe Document and Media widget In Liferay Portal 7.2.0 through 7.3.6, and older unsupported versions,…

medium
6.5
EPSS
0.05%
First published (updated )
CVE-2024-25143

Liferay 7.4 GAThe organization selector in Liferay Portal 7.4.3.81 through 7.4.3.85, and Liferay DXP 7.4 update 81…

medium
4.3
First published (updated )
CVE-2023-3426

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Liferay 7.4 GAOpen redirect vulnerability in the Layout module's SEO configuration in Liferay Portal 7.4.3.70 thro…

medium
6.1
First published (updated )
CVE-2023-35029

Liferay 7.4 GAXSS

medium
6.1
First published (updated )
CVE-2023-3193

Liferay 7.4 GAThe Object module in Liferay Portal 7.4.3.4 through 7.4.3.60, and Liferay DXP 7.4 before update 61 d…

medium
4.3
First published (updated )
CVE-2023-33947

Liferay 7.4 GAThe Object module in Liferay Portal 7.4.3.4 through 7.4.3.48, and Liferay DXP 7.4 before update 49 d…

medium
4.3
First published (updated )
CVE-2023-33946

Liferay 7.4 GAXSS

medium
6.1
First published (updated )
CVE-2023-33944

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203