A Cross-site scripting (XSS) vulnerability in the Announcements module in Liferay Portal 7.1.0 through 7.4.2, and Liferay DXP 7.1 before fix pack 27, 7.2 before fix pack 17, and 7.3 before service pack 3 allows remote attackers to inject arbitrary web script or HTML.
Metrics
Affected Vendors & Products
References
History
Tue, 13 May 2025 18:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Liferay digital Experience Platform
|
|
CPEs | cpe:2.3:a:liferay:dxp:7.1:fix_pack_10:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_11:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_12:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_13:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_14:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_15:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_16:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_17:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_18:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_19:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_1:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_20:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_21:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_22:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_23:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_24:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_25:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_2:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_3:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_4:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_5:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_6:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_7:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_8:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.1:fix_pack_9:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.2:-:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.2:fix_pack_10:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.2:fix_pack_11:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.2:fix_pack_12:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.2:fix_pack_13:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.2:fix_pack_14:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.2:fix_pack_15:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.2:fix_pack_1:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.2:fix_pack_2:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.2:fix_pack_3:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.2:fix_pack_4:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.2:fix_pack_5:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.2:fix_pack_6:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.2:fix_pack_7:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.2:fix_pack_8:*:*:*:*:*:* cpe:2.3:a:liferay:dxp:7.2:fix_pack_9:*:*:*:*:*:* |
cpe:2.3:a:liferay:digital_experience_platform:7.1:-:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_10:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_11:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_12:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_13:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_14:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_15:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_16:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_17:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_18:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_19:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_1:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_20:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_21:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_22:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_23:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_24:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_25:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_2:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_3:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_4:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_5:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_6:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_7:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_8:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.1:fix_pack_9:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.2:-:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_10:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_11:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_12:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_13:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_14:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_15:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_1:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_2:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_3:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_4:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_5:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_6:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_7:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_8:*:*:*:*:*:* cpe:2.3:a:liferay:digital_experience_platform:7.2:fix_pack_9:*:*:*:*:*:* |
Vendors & Products |
Liferay digital Experience Platform
|
Wed, 30 Apr 2025 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2025-04-30T18:52:45.696Z
Reserved: 2022-10-03T00:00:00.000Z
Link: CVE-2022-42110

Updated: 2024-08-03T13:03:45.457Z

Status : Modified
Published: 2022-11-15T00:15:12.817
Modified: 2025-05-13T18:17:51.450
Link: CVE-2022-42110

No data.

No data.