LSV-961: SQL injection vulnerability during page template upgrade

Affects versions

7.1 DXP (7.1.10)

Fix versions

7.1.X EE

7.0 Fix Pack Version

None

7.1 Fix Pack Version

7.2 Fix Pack Version

7.3 Fix Pack Version

7.4 Fix Pack Version

CVE IDs

CVE-2022-42121

CVSS Base Score

6.4

CVSS Vector String

CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H

Labels

liferay-fixpack-dxp-17-7210liferay-fixpack-dxp-27-7110liferay-fixpack-dxp-3-7310

Description

SQL injection vulnerability in the Layout module's page template upgrade process in Liferay DXP 7.1 before fix pack 27, 7.2 before fix pack 17, 7.3 before service pack 3, and 7.4 GA allows remote authenticated attackers to execute arbitrary SQL commands via a crafted payload injected into a page template's 'Name' field. To exploit this vulnerability, the attacker must create a page template with a malicious name in Liferay DXP 7.1 before fix pack 11, and wait for the application to be upgraded.

Activity

Show:

Enterprise Release HU July 13, 2022 at 3:14 PM

Moved to Closed - Liferay Branch Manager

Resize issue view side panel

Fixed

Pinned fields

Click on the next to a field label to start pinning.

Details
Assignee
EE Support
Reporter
Enterprise Release HU
Priority
Low

Zendesk Support

Created November 10, 2021 at 6:33 AM

Updated October 18, 2022 at 8:12 PM

Resolved July 13, 2022 at 3:14 PM

LSV-961: SQL injection vulnerability during page template upgrade

Affects versions

Fix versions

7.0 Fix Pack Version

7.1 Fix Pack Version

7.2 Fix Pack Version

7.3 Fix Pack Version

7.4 Fix Pack Version

CVE IDs

CVSS Base Score

CVSS Vector String

Labels

Description

Activity

Enterprise Release HU July 13, 2022 at 3:14 PM

DetailsAssigneeEE SupportEE SupportReporterEnterprise Release HUEnterprise Release HUPriorityLow

Details

Assignee

Reporter

Priority

Zendesk SupportLinked Tickets

Zendesk Support

Details
Assignee
EE Support
Reporter
Enterprise Release HU
Priority
Low

Zendesk Support