Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
liferay liferay enterprise portal 4.3.6 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2008-0563
Cross-site request forgery (CSRF) vulnerability in service/impl/UserLocalServiceImpl.java in Liferay Portal 4.3.6 allows remote malicious users to perform unspecified actions as unspecified authenticated users via the User-Agent HTTP header, which is used when composing Forgot Pa...
Liferay Liferay Enterprise Portal 4.3.6
4.3
CVSSv2
CVE-2008-0178
Cross-site scripting (XSS) vulnerability in the Enterprise Admin Session Monitoring component in Liferay Portal 4.3.6 allows remote authenticated users to inject arbitrary web script or HTML via the User-Agent HTTP header.
Liferay Liferay Enterprise Portal 4.3.6
1 EDB exploit
4.3
CVSSv2
CVE-2008-0180
Cross-site scripting (XSS) vulnerability in themes/_unstyled/templates/init.vm in Liferay Portal 4.3.6 allows remote authenticated users to inject arbitrary web script or HTML via the Greeting field in a User Profile.
Liferay Liferay Enterprise Portal 2.2.0
Liferay Liferay Enterprise Portal 3.6.1
Liferay Liferay Enterprise Portal 4.1
Liferay Liferay Enterprise Portal 4.1.1
Liferay Liferay Enterprise Portal
Liferay Liferay Enterprise Portal 1.0
Liferay Liferay Enterprise Portal 2.1.0
Liferay Liferay Enterprise Portal 4.3.1
Liferay Liferay Enterprise Portal 2.0
Liferay Liferay Enterprise Portal 2.1.1
Liferay Liferay Enterprise Portal 4.1.3
Liferay Liferay Enterprise Portal 4.3.6
4.3
CVSSv2
CVE-2008-0181
Cross-site scripting (XSS) vulnerability in the Admin portlet in Liferay Portal 4.3.6 allows remote authenticated users to inject arbitrary web script or HTML via the Shutdown message.
Liferay Liferay Enterprise Portal 4.3.6
2.6
CVSSv2
CVE-2008-0179
Cross-site scripting (XSS) vulnerability in service/impl/UserLocalServiceImpl.java in Liferay Portal 4.3.6 allows remote malicious users to inject arbitrary web script or HTML via the User-Agent HTTP header, which is used when composing Forgot Password e-mail messages in HTML for...
Liferay Liferay Enterprise Portal 4.3.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started