-
Type:
Regression Bug
-
Status: Closed
-
Priority:
Critical
-
Resolution: Fixed
-
Affects Version/s: 6.2 EE GA1 (6.2.10), 7.0 DE (7.0.10), 7.1 DXP (7.1.10)
-
Component/s: Portal Services > Templates Engine, Security Vulnerability
-
Fix Pack Status:Scheduled
-
Business Value:5
-
7.0 Fix Pack Version:65
-
7.1 Fix Pack Version:1
Liferay DXP 7.0 (FP37+/SP7+), 7.1 and Liferay Portal 6.2 EE contain a path traversal vulnerability in Web Content templates and Application Display Templates (ADT).
See also https://help.liferay.com/hc/en-us/articles/360020792971.