[LPE-16459] Stored XSS with directory indexing - Liferay Issues

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Minor
Resolution: Fixed
Affects Version/s: 7.0 DE (7.0.10), 7.1 DXP (7.1.10)
Fix Version/s: 7.0.X EE, 7.1.x EE
Component/s: DM, Security Vulnerability
Labels:

Business Value:
3
7.0 Fix Pack Version:
59
7.1 Fix Pack Version:
1

Description

A stored cross-site scripting (XSS) vulnerability exist in Liferay DXP 7.1 and DXP 7.0 with Document and Media when directory indexing is enabled.

Attachments

Activity

People

Assignee:: EE Support

Reporter:: Enterprise Release HU

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 09/Jul/18 2:45 AM

Updated:: 10/May/19 4:31 PM

Resolved:: 23/Aug/18 2:57 AM

Packages

Version	Package
7.0.X EE
7.1.x EE