[LPE-16459] Stored XSS with directory indexing - Liferay Issues

Details

Type: Bug
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: 7.0 DE (7.0.10), 7.1 DXP (7.1.10)
Fix Version/s: 7.0.X EE, 7.1.x EE
Component/s: DM, Security Vulnerability
Labels:

Business Value:
3
7.0 Fix Pack Version:
59
7.1 Fix Pack Version:
1

Description

A stored cross-site scripting (XSS) vulnerability exist in Liferay DXP 7.1 and DXP 7.0 with Document and Media when directory indexing is enabled.

Attachments

Activity

People

Assignee:

EE Support

Reporter:

Enterprise Release HU

Votes:

0 Vote for this issue

Watchers:

1 Start watching this issue

Dates

Created:

09/Jul/18 2:45 AM

Updated:

10/May/19 4:31 PM

Resolved:

23/Aug/18 2:57 AM

Packages

Version	Package
7.0.X EE
7.1.x EE