Uploaded image for project: 'PUBLIC - Liferay Portal Community Edition'
  1. PUBLIC - Liferay Portal Community Edition
  2. LPS-3155

XSS vulnerability with organization names

    Details

    • Type: Bug
    • Status: Closed
    • Resolution: Fixed
    • Affects Version/s: 5.2.2
    • Fix Version/s: 5.2.3
    • Component/s: None
    • Labels:
      None
    • Branch Version/s:
      5.1.x
    • Backported to Branch:
      Committed

      Description

      A cross site scripting (XSS) vulnerability exist with organization names in the Control Panel, Enterprise Admin portlet, and the Dock

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              samuel.kong Samuel Kong
              Reporter:
              samuel.kong Samuel Kong
              Participants of an Issue:
              Recent user:
              Esther Sanz
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:
                Days since last comment:
                11 years, 46 weeks ago

                  Packages

                  Version Package
                  5.2.3