Uploaded image for project: 'PUBLIC - Liferay Faces'
  1. PUBLIC - Liferay Faces
  2. FACES-3338

Mitigate RichFaces RF-14310 and RF-14309

    Details

      Description

      This task involves preventing remote code (EL) execution for RichFaces webapps/portlets as described here: https://codewhitesec.blogspot.com/2018/05/poor-richfaces.html.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                kyle.stiemann Kyle Stiemann (Inactive)
                Reporter:
                kyle.stiemann Kyle Stiemann (Inactive)
                Participants of an Issue:
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Packages

                  Version Package
                  bridge-impl-3.1.1
                  bridge-impl-4.1.3
                  richfaces-archetype-2.0.5
                  richfaces-archetype-3.0.5
                  richfaces-archetype-5.0.6