Multiple cross-site scripting (XSS) vulnerabilities in index.jsp for Liferay prior to 2.2.0 release 10/1/2004 allow remote malicious users to inject arbitrary web script or HTML, as demonstrated using the message subject.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
liferay liferay enterprise portal 2.1.0 |
||
liferay liferay enterprise portal |