Search

Find a vulnerability

Search criteria

    528 vulnerabilities found for digital_experience_platform by liferay

    CVE-2025-62275 (GCVE-0-2025-62275)

    Vulnerability from nvd – Published: 2025-11-01 02:42 – Updated: 2025-11-03 15:47
    VLAI
    Summary
    Blogs in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions does not check permission of images in a blog entry, which allows remote attackers to view the images in a blog entry via crafted URL.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-863 - Incorrect Authorization
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.111 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.10 (maven)
    Affected: 2023.Q4.0 , ≤ 2023.Q4.10 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62275",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-03T15:47:43.985392Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-03T15:47:50.284Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.111",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.10",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q4.10",
                  "status": "affected",
                  "version": "2023.Q4.0",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Blogs in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions does not check permission of images in a blog entry, which allows remote attackers to view the images in a blog entry via crafted URL."
                }
              ],
              "value": "Blogs in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions does not check permission of images in a blog entry, which allows remote attackers to view the images in a blog entry via crafted URL."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-863",
                  "description": "CWE-863: Incorrect Authorization",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-11-01T02:42:50.698Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62275"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62275",
        "datePublished": "2025-11-01T02:42:50.698Z",
        "dateReserved": "2025-10-09T20:58:54.403Z",
        "dateUpdated": "2025-11-03T15:47:50.284Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-62276 (GCVE-0-2025-62276)

    Vulnerability from nvd – Published: 2025-10-31 23:34 – Updated: 2025-11-03 13:31
    VLAI
    Summary
    The Document Library and the Adaptive Media modules in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions uses an incorrect cache-control header, which allows local users to obtain access to downloaded files via the browser's cache.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-525 - Use of Web Browser Cache Containing Sensitive Information
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.111 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.10 (maven)
    Affected: 2023.Q4.0 , ≤ 2023.Q4.10 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62276",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-03T13:10:51.937790Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-03T13:31:38.847Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.111",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.10",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q4.10",
                  "status": "affected",
                  "version": "2023.Q4.0",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The Document Library and the Adaptive Media modules in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions uses an incorrect cache-control header, which allows local users to obtain access to downloaded files via the browser\u0027s cache."
                }
              ],
              "value": "The Document Library and the Adaptive Media modules in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions uses an incorrect cache-control header, which allows local users to obtain access to downloaded files via the browser\u0027s cache."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "LOCAL",
                "baseScore": 4.6,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-525",
                  "description": "CWE-525: Use of Web Browser Cache Containing Sensitive Information",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-31T23:34:20.166Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62276"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62276",
        "datePublished": "2025-10-31T23:34:20.166Z",
        "dateReserved": "2025-10-09T20:58:54.403Z",
        "dateUpdated": "2025-11-03T13:31:38.847Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-62267 (GCVE-0-2025-62267)

    Vulnerability from nvd – Published: 2025-10-31 18:12 – Updated: 2025-11-03 15:48
    VLAI
    Summary
    Multiple cross-site scripting (XSS) vulnerabilities in web content template’s select structure page in Liferay Portal 7.4.3.35 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 update 35 through update 92 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a user’s (1) First Name, (2) Middle Name, or (3) Last Name text field.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.3.35 , ≤ 7.4.3.111 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.4.13-u35 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.10 (maven)
    Affected: 2023.Q4.0 , ≤ 2023.Q4.10 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62267",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-03T15:48:45.504319Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-03T15:48:52.733Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.111",
                  "status": "affected",
                  "version": "7.4.3.35",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13-u35",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.10",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q4.10",
                  "status": "affected",
                  "version": "2023.Q4.0",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Multiple cross-site scripting (XSS) vulnerabilities in web content template\u2019s select structure page in Liferay Portal 7.4.3.35 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 update 35 through update 92 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a user\u2019s (1) First Name, (2) Middle Name, or (3) Last Name text field."
                }
              ],
              "value": "Multiple cross-site scripting (XSS) vulnerabilities in web content template\u2019s select structure page in Liferay Portal 7.4.3.35 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 update 35 through update 92 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a user\u2019s (1) First Name, (2) Middle Name, or (3) Last Name text field."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 4.6,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "HIGH",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or \u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-31T18:12:50.703Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62267"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62267",
        "datePublished": "2025-10-31T18:12:50.703Z",
        "dateReserved": "2025-10-09T20:58:54.402Z",
        "dateUpdated": "2025-11-03T15:48:52.733Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-62264 (GCVE-0-2025-62264)

    Vulnerability from nvd – Published: 2025-10-31 17:32 – Updated: 2025-10-31 17:52
    VLAI
    Summary
    Reflected cross-site scripting (XSS) vulnerability in Languauge Override in Liferay Portal 7.4.3.8 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, and 7.4 update 4 through update 92 allows remote attackers to inject arbitrary web script or HTML via the `_com_liferay_portal_language_override_web_internal_portlet_PLOPortlet_selectedLanguageId` parameter.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.3.8 , ≤ 7.4.3.111 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.4.13-u4 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.10 (maven)
    Affected: 2023.Q4.0 , ≤ 2023.Q4.10 (maven)
    Create a notification for this product.
    Credits
    argon21
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62264",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-31T17:52:20.740845Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-31T17:52:36.076Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.111",
                  "status": "affected",
                  "version": "7.4.3.8",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13-u4",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.10",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q4.10",
                  "status": "affected",
                  "version": "2023.Q4.0",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "argon21"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Reflected cross-site scripting (XSS) vulnerability in Languauge Override in Liferay Portal 7.4.3.8 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, and 7.4 update 4 through update 92 allows remote attackers to inject arbitrary web script or HTML via the `_com_liferay_portal_language_override_web_internal_portlet_PLOPortlet_selectedLanguageId` parameter."
                }
              ],
              "value": "Reflected cross-site scripting (XSS) vulnerability in Languauge Override in Liferay Portal 7.4.3.8 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, and 7.4 update 4 through update 92 allows remote attackers to inject arbitrary web script or HTML via the `_com_liferay_portal_language_override_web_internal_portlet_PLOPortlet_selectedLanguageId` parameter."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 5.1,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or \u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-31T17:32:01.861Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62264"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62264",
        "datePublished": "2025-10-31T17:32:01.861Z",
        "dateReserved": "2025-10-09T20:58:53.012Z",
        "dateUpdated": "2025-10-31T17:52:36.076Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-62265 (GCVE-0-2025-62265)

    Vulnerability from nvd – Published: 2025-10-30 18:30 – Updated: 2025-10-30 19:04
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in the Blogs widget in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.8, 7.4 GA through update 92, 7.3 GA through update 36, and older unsupported versions allows remote attackers to inject arbitrary web script or HTML via a crafted <iframe> injected into a blog entry's “Content” text field The Blogs widget in Liferay DXP does not add the sandbox attribute to <iframe> elements, which allows remote attackers to access the parent page via scripts and links in the frame page.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.111 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.8 (maven)
    Affected: 2023.Q4.0 , ≤ 2023.Q4.10 (maven)
    Create a notification for this product.
    Credits
    foobar7
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62265",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-30T19:04:40.379081Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-30T19:04:48.068Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.111",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.8",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q4.10",
                  "status": "affected",
                  "version": "2023.Q4.0",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "foobar7"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Cross-site scripting (XSS) vulnerability in the Blogs widget in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.8, 7.4 GA through update 92, 7.3 GA through update 36, and older unsupported versions allows remote attackers to inject arbitrary web script or HTML via a crafted \u0026lt;iframe\u0026gt; injected into a blog entry\u0027s \u201cContent\u201d text field \u003cbr\u003e\u003cbr\u003eThe Blogs widget in Liferay DXP does not add the sandbox attribute to \u0026lt;iframe\u0026gt; elements, which allows remote attackers to access the parent page via scripts and links in the frame page."
                }
              ],
              "value": "Cross-site scripting (XSS) vulnerability in the Blogs widget in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.8, 7.4 GA through update 92, 7.3 GA through update 36, and older unsupported versions allows remote attackers to inject arbitrary web script or HTML via a crafted \u003ciframe\u003e injected into a blog entry\u0027s \u201cContent\u201d text field \n\nThe Blogs widget in Liferay DXP does not add the sandbox attribute to \u003ciframe\u003e elements, which allows remote attackers to access the parent page via scripts and links in the frame page."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 4.8,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "LOW",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or \u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-30T18:30:35.960Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62265"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62265",
        "datePublished": "2025-10-30T18:30:35.960Z",
        "dateReserved": "2025-10-09T20:58:53.012Z",
        "dateUpdated": "2025-10-30T19:04:48.068Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-62266 (GCVE-0-2025-62266)

    Vulnerability from nvd – Published: 2025-10-30 17:37 – Updated: 2025-10-30 19:06
    VLAI
    Summary
    By default, Liferay Portal 7.4.0 through 7.4.3.119, and older unsupported versions, and Liferay DXP 2024.Q1.1 through 2024.Q1.5, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions is vulnerable to DNS rebinding attacks, which allows remote attackers to redirect users to arbitrary external URLs. This vulnerability can be mitigated by changing the redirect URL security from IP to domain.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-601 - URL Redirection to Untrusted Site ('Open Redirect')
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.119 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.10 (maven)
    Affected: 2023.Q4.0 , ≤ 2023.Q4.10 (maven)
    Affected: 2024.Q1.1 , ≤ 2024.Q1.5 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62266",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-30T19:06:36.738279Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-30T19:06:43.671Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.119",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.10",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q4.10",
                  "status": "affected",
                  "version": "2023.Q4.0",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2024.Q1.5",
                  "status": "affected",
                  "version": "2024.Q1.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "By default, Liferay Portal 7.4.0 through 7.4.3.119, and older unsupported versions, and Liferay DXP 2024.Q1.1 through 2024.Q1.5, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions is vulnerable to DNS rebinding attacks, which allows remote attackers to redirect users to arbitrary external URLs. This vulnerability can be mitigated by changing the redirect URL security from IP to domain."
                }
              ],
              "value": "By default, Liferay Portal 7.4.0 through 7.4.3.119, and older unsupported versions, and Liferay DXP 2024.Q1.1 through 2024.Q1.5, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions is vulnerable to DNS rebinding attacks, which allows remote attackers to redirect users to arbitrary external URLs. This vulnerability can be mitigated by changing the redirect URL security from IP to domain."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 5.1,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-601",
                  "description": "CWE-601 URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-30T18:35:11.229Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62256"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62266",
        "datePublished": "2025-10-30T17:37:21.375Z",
        "dateReserved": "2025-10-09T20:58:53.012Z",
        "dateUpdated": "2025-10-30T19:06:43.671Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-62257 (GCVE-0-2025-62257)

    Vulnerability from nvd – Published: 2025-10-29 23:24 – Updated: 2025-10-30 17:41
    VLAI
    Summary
    Password enumeration vulnerability in Liferay Portal 7.4.0 through 7.4.3.119, and older unsupported versions, and Liferay DXP 2024.Q1.1 through 2024.Q1.5, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions allows remote attackers to determine a user’s password even if account lockout is enabled via brute force attack.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-307 - Improper Restriction of Excessive Authentication Attempts
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.119 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.10 (maven)
    Affected: 2023.Q4.0 , ≤ 2023.Q4.10 (maven)
    Affected: 2024.Q1.1 , ≤ 2024.Q1.5 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62257",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-30T14:08:10.447289Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-30T14:08:20.972Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.119",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.10",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q4.10",
                  "status": "affected",
                  "version": "2023.Q4.0",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2024.Q1.5",
                  "status": "affected",
                  "version": "2024.Q1.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Password enumeration vulnerability in Liferay Portal 7.4.0 through 7.4.3.119, and older unsupported versions, and Liferay DXP 2024.Q1.1 through 2024.Q1.5, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions allows remote attackers to determine a user\u2019s password even if account lockout is enabled via brute force attack."
                }
              ],
              "value": "Password enumeration vulnerability in Liferay Portal 7.4.0 through 7.4.3.119, and older unsupported versions, and Liferay DXP 2024.Q1.1 through 2024.Q1.5, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions allows remote attackers to determine a user\u2019s password even if account lockout is enabled via brute force attack."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "PRESENT",
                "attackVector": "NETWORK",
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-307",
                  "description": "CWE-307 Improper Restriction of Excessive Authentication Attempts",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-30T17:41:13.870Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62257"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62257",
        "datePublished": "2025-10-29T23:24:42.740Z",
        "dateReserved": "2025-10-09T20:58:53.011Z",
        "dateUpdated": "2025-10-30T17:41:13.870Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-62259 (GCVE-0-2025-62259)

    Vulnerability from nvd – Published: 2025-10-27 22:13 – Updated: 2025-10-28 19:48
    VLAI
    Summary
    Liferay Portal 7.4.0 through 7.4.3.109, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit access to APIs before a user has verified their email address, which allows remote users to access and edit content via the API.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-863 - Incorrect Authorization
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.109 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.3.10 , ≤ 7.3.10-u35 (maven)
    Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.4 (maven)
    Create a notification for this product.
    Credits
    4rth4s
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62259",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-28T19:47:44.589308Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-28T19:48:15.967Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.109",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.3.10-u35",
                  "status": "affected",
                  "version": "7.3.10",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.4",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "4rth4s"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Liferay Portal 7.4.0 through 7.4.3.109, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit access to APIs before a user has verified their email address, which allows remote users to access and edit content via the API."
                }
              ],
              "value": "Liferay Portal 7.4.0 through 7.4.3.109, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit access to APIs before a user has verified their email address, which allows remote users to access and edit content via the API."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-863",
                  "description": "CWE-863 Incorrect Authorization",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-27T22:13:35.880Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62259"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62259",
        "datePublished": "2025-10-27T22:13:35.880Z",
        "dateReserved": "2025-10-09T20:58:53.011Z",
        "dateUpdated": "2025-10-28T19:48:15.967Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-62258 (GCVE-0-2025-62258)

    Vulnerability from nvd – Published: 2025-10-27 22:56 – Updated: 2025-10-28 14:59
    VLAI
    Summary
    CSRF vulnerability in Headless API in Liferay Portal 7.4.0 through 7.4.3.107, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows remote attackers to execute any Headless API via the `endpoint` parameter.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-352 - Cross-Site Request Forgery (CSRF)
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.107 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.3.10 , ≤ 7.3.10-u35 (maven)
    Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.4 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62258",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-28T14:59:44.742081Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-28T14:59:58.126Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.107",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.3.10-u35",
                  "status": "affected",
                  "version": "7.3.10",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.4",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "CSRF vulnerability in Headless API in Liferay Portal 7.4.0 through 7.4.3.107, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows remote attackers to execute any Headless API via the `endpoint` parameter."
                }
              ],
              "value": "CSRF vulnerability in Headless API in Liferay Portal 7.4.0 through 7.4.3.107, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows remote attackers to execute any Headless API via the `endpoint` parameter."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 7,
                "baseSeverity": "HIGH",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "HIGH",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-352",
                  "description": "CWE-352 Cross-Site Request Forgery (CSRF)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-27T22:56:21.041Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62258"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62258",
        "datePublished": "2025-10-27T22:56:21.041Z",
        "dateReserved": "2025-10-09T20:58:53.011Z",
        "dateUpdated": "2025-10-28T14:59:58.126Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-62261 (GCVE-0-2025-62261)

    Vulnerability from nvd – Published: 2025-10-27 21:11 – Updated: 2025-10-28 14:27
    VLAI
    Summary
    Liferay Portal 7.4.0 through 7.4.3.99, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 34, and older unsupported versions stores password reset tokens in plain text, which allows attackers with access to the database to obtain the token, reset a user’s password and take over the user’s account.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-312 - Cleartext Storage of Sensitive Information
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.99 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.3.10 , ≤ 7.3.10-u34 (maven)
    Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.4 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62261",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-28T14:27:39.740720Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-28T14:27:47.375Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.99",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.3.10-u34",
                  "status": "affected",
                  "version": "7.3.10",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.4",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Liferay Portal 7.4.0 through 7.4.3.99, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 34, and older unsupported versions stores password reset tokens in plain text, which allows attackers with access to the database to obtain the token, reset a user\u2019s password and take over the user\u2019s account."
                }
              ],
              "value": "Liferay Portal 7.4.0 through 7.4.3.99, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 34, and older unsupported versions stores password reset tokens in plain text, which allows attackers with access to the database to obtain the token, reset a user\u2019s password and take over the user\u2019s account."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "HIGH",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "HIGH",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-312",
                  "description": "CWE-312 Cleartext Storage of Sensitive Information",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-27T21:11:46.893Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62261"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62261",
        "datePublished": "2025-10-27T21:11:46.893Z",
        "dateReserved": "2025-10-09T20:58:53.011Z",
        "dateUpdated": "2025-10-28T14:27:47.375Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-62260 (GCVE-0-2025-62260)

    Vulnerability from nvd – Published: 2025-10-27 21:44 – Updated: 2025-10-28 15:01
    VLAI
    Summary
    Liferay Portal 7.4.0 through 7.4.3.99, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit the number of objects returned from Headless API requests, which allows remote attackers to perform denial-of-service (DoS) attacks on the application by executing a request that returns a large number of objects.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-400 - Uncontrolled Resource Consumption
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.99 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.3.10 , ≤ 7.3.10-u35 (maven)
    Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.4 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62260",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-28T15:01:15.628675Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-28T15:01:26.622Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.99",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.3.10-u35",
                  "status": "affected",
                  "version": "7.3.10",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.4",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Liferay Portal 7.4.0 through 7.4.3.99, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit the number of objects returned from Headless API requests, which allows remote attackers to perform denial-of-service (DoS) attacks on the application by executing a request that returns a large number of objects."
                }
              ],
              "value": "Liferay Portal 7.4.0 through 7.4.3.99, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit the number of objects returned from Headless API requests, which allows remote attackers to perform denial-of-service (DoS) attacks on the application by executing a request that returns a large number of objects."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 7.1,
                "baseSeverity": "HIGH",
                "privilegesRequired": "LOW",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "HIGH",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-400",
                  "description": "CWE-400 Uncontrolled Resource Consumption",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-27T21:44:08.185Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62260"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62260",
        "datePublished": "2025-10-27T21:44:08.185Z",
        "dateReserved": "2025-10-09T20:58:53.011Z",
        "dateUpdated": "2025-10-28T15:01:26.622Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-62262 (GCVE-0-2025-62262)

    Vulnerability from nvd – Published: 2025-10-27 20:39 – Updated: 2025-10-28 14:41
    VLAI
    Summary
    Information exposure through log file vulnerability in LDAP import feature in Liferay Portal 7.4.0 through 7.4.3.97, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows local users to view user email address in the log files.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-532 - Insertion of Sensitive Information into Log File
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.97 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.3.10 , ≤ 7.3.10-u35 (maven)
    Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.4 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62262",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-28T14:35:34.828108Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-28T14:41:31.296Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.97",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.3.10-u35",
                  "status": "affected",
                  "version": "7.3.10",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.4",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Information exposure through log file vulnerability in LDAP import feature in Liferay Portal 7.4.0 through 7.4.3.97, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows local users to view user email address in the log files."
                }
              ],
              "value": "Information exposure through log file vulnerability in LDAP import feature in Liferay Portal 7.4.0 through 7.4.3.97, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows local users to view user email address in the log files."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "LOCAL",
                "baseScore": 4.6,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "HIGH",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-532",
                  "description": "CWE-532 Insertion of Sensitive Information into Log File",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-27T20:39:23.416Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62263"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62262",
        "datePublished": "2025-10-27T20:39:23.416Z",
        "dateReserved": "2025-10-09T20:58:53.011Z",
        "dateUpdated": "2025-10-28T14:41:31.296Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-62263 (GCVE-0-2025-62263)

    Vulnerability from nvd – Published: 2025-10-27 19:38 – Updated: 2025-10-27 20:24
    VLAI
    Summary
    Multiple cross-site scripting (XSS) vulnerabilities in Liferay Portal 7.3.7 through 7.4.3.103, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 service pack 3 through update 36 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into an Account Role’s “Title” text field to (1) view account role page, or (2) select account role page. Multiple cross-site scripting (XSS) vulnerabilities in Liferay Portal 7.3.7 through 7.4.3.103, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 service pack 3 through update 36 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into an Organization’s “Name” text field to (1) view account page, (2) view account organization page, or (3) select account organization page.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.3.7 , ≤ 7.4.3.103 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.3.10-sp3 , ≤ 7.3.10-u36 (maven)
    Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.4 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62263",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-27T20:24:32.580002Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-27T20:24:49.578Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.103",
                  "status": "affected",
                  "version": "7.3.7",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.3.10-u36",
                  "status": "affected",
                  "version": "7.3.10-sp3",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.4",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Multiple cross-site scripting (XSS) vulnerabilities in Liferay Portal 7.3.7 through 7.4.3.103, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 service pack 3 through update 36 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into an Account Role\u2019s \u201cTitle\u201d text field to (1) view account role page, or (2) select account role page.\u003cbr\u003e\u003cbr\u003eMultiple cross-site scripting (XSS) vulnerabilities in Liferay Portal 7.3.7 through 7.4.3.103, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 service pack 3 through update 36 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into an Organization\u2019s \u201cName\u201d text field to (1) view account page, (2) view account organization page, or (3) select account organization page."
                }
              ],
              "value": "Multiple cross-site scripting (XSS) vulnerabilities in Liferay Portal 7.3.7 through 7.4.3.103, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 service pack 3 through update 36 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into an Account Role\u2019s \u201cTitle\u201d text field to (1) view account role page, or (2) select account role page.\n\nMultiple cross-site scripting (XSS) vulnerabilities in Liferay Portal 7.3.7 through 7.4.3.103, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 service pack 3 through update 36 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into an Organization\u2019s \u201cName\u201d text field to (1) view account page, (2) view account organization page, or (3) select account organization page."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 4.8,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "LOW",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or \u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-27T19:38:44.073Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62263"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62263",
        "datePublished": "2025-10-27T19:38:44.073Z",
        "dateReserved": "2025-10-09T20:58:53.011Z",
        "dateUpdated": "2025-10-27T20:24:49.578Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-62253 (GCVE-0-2025-62253)

    Vulnerability from nvd – Published: 2025-10-27 18:54 – Updated: 2025-10-27 19:38
    VLAI
    Summary
    Open redirect vulnerability in page administration in Liferay Portal 7.4.0 through 7.4.3.97, and older unsupported versions, and Liferay DXP 2023.Q4.0, 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows remote attackers to redirect users to arbitrary external URLs via the _com_liferay_layout_admin_web_portlet_GroupPagesPortlet_redirect parameter.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-601 - URL Redirection to Untrusted Site ('Open Redirect')
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.97 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.3.10 , ≤ 7.3.10-u35 (maven)
    Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.4 (maven)
    Create a notification for this product.
    Credits
    Abderrahmane BOUNHIDJA
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62253",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-27T19:38:08.810962Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-27T19:38:22.629Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.97",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.3.10-u35",
                  "status": "affected",
                  "version": "7.3.10",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.4",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:a:liferay:portal:*:*:*:*:*:*:*:*",
                      "versionEndIncluding": "7.4.3.97",
                      "versionStartIncluding": "7.4.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                },
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:a:liferay:dxp:*:*:*:*:*:*:*:*",
                      "versionEndIncluding": "7.3.10-u35",
                      "versionStartIncluding": "7.3.10",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:liferay:dxp:*:*:*:*:*:*:*:*",
                      "versionEndIncluding": "7.4.13-u92",
                      "versionStartIncluding": "7.4.13",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:liferay:dxp:*:*:*:*:*:*:*:*",
                      "versionEndIncluding": "2023.q3.4",
                      "versionStartIncluding": "2023.q3.1",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ],
              "operator": "OR"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Abderrahmane BOUNHIDJA"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Open redirect vulnerability in page administration in Liferay Portal 7.4.0 through 7.4.3.97, and older unsupported versions, and Liferay DXP 2023.Q4.0, 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows remote attackers to redirect users to arbitrary external URLs via the _com_liferay_layout_admin_web_portlet_GroupPagesPortlet_redirect parameter."
                }
              ],
              "value": "Open redirect vulnerability in page administration in Liferay Portal 7.4.0 through 7.4.3.97, and older unsupported versions, and Liferay DXP 2023.Q4.0, 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows remote attackers to redirect users to arbitrary external URLs via the _com_liferay_layout_admin_web_portlet_GroupPagesPortlet_redirect parameter."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "LOW",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-601",
                  "description": "CWE-601 URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-27T19:29:10.926Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62253"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62253",
        "datePublished": "2025-10-27T18:54:47.929Z",
        "dateReserved": "2025-10-09T20:58:51.717Z",
        "dateUpdated": "2025-10-27T19:38:22.629Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-62254 (GCVE-0-2025-62254)

    Vulnerability from nvd – Published: 2025-10-23 22:16 – Updated: 2025-10-24 16:58
    VLAI
    Summary
    The ComboServlet in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.2, 2023.Q3.1 through 2023.Q3.5, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit the number or size of the files it will combine, which allows remote attackers to create very large responses that lead to a denial of service attack via the URL query string.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.111 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.3.10 , ≤ 7.3.10-u35 (maven)
    Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.5 (maven)
    Affected: 2023.Q4.0 , ≤ 2023.Q4.2 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62254",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-24T16:56:03.087326Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-24T16:58:53.772Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.111",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.3.10-u35",
                  "status": "affected",
                  "version": "7.3.10",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.5",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q4.2",
                  "status": "affected",
                  "version": "2023.Q4.0",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The ComboServlet in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.2, 2023.Q3.1 through 2023.Q3.5, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions  does not limit the number or size of the files it will combine, which allows remote attackers to create very large responses that lead to a denial of service attack via the URL query string."
                }
              ],
              "value": "The ComboServlet in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.2, 2023.Q3.1 through 2023.Q3.5, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions  does not limit the number or size of the files it will combine, which allows remote attackers to create very large responses that lead to a denial of service attack via the URL query string."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "LOW",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-23T22:16:34.334Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62254"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62254",
        "datePublished": "2025-10-23T22:16:34.334Z",
        "dateReserved": "2025-10-09T20:58:51.717Z",
        "dateUpdated": "2025-10-24T16:58:53.772Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-62275 (GCVE-0-2025-62275)

    Vulnerability from cvelistv5 – Published: 2025-11-01 02:42 – Updated: 2025-11-03 15:47
    VLAI
    Summary
    Blogs in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions does not check permission of images in a blog entry, which allows remote attackers to view the images in a blog entry via crafted URL.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-863 - Incorrect Authorization
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.111 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.10 (maven)
    Affected: 2023.Q4.0 , ≤ 2023.Q4.10 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62275",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-03T15:47:43.985392Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-03T15:47:50.284Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.111",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.10",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q4.10",
                  "status": "affected",
                  "version": "2023.Q4.0",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Blogs in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions does not check permission of images in a blog entry, which allows remote attackers to view the images in a blog entry via crafted URL."
                }
              ],
              "value": "Blogs in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions does not check permission of images in a blog entry, which allows remote attackers to view the images in a blog entry via crafted URL."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-863",
                  "description": "CWE-863: Incorrect Authorization",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-11-01T02:42:50.698Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62275"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62275",
        "datePublished": "2025-11-01T02:42:50.698Z",
        "dateReserved": "2025-10-09T20:58:54.403Z",
        "dateUpdated": "2025-11-03T15:47:50.284Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-62276 (GCVE-0-2025-62276)

    Vulnerability from cvelistv5 – Published: 2025-10-31 23:34 – Updated: 2025-11-03 13:31
    VLAI
    Summary
    The Document Library and the Adaptive Media modules in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions uses an incorrect cache-control header, which allows local users to obtain access to downloaded files via the browser's cache.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-525 - Use of Web Browser Cache Containing Sensitive Information
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.111 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.10 (maven)
    Affected: 2023.Q4.0 , ≤ 2023.Q4.10 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62276",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-03T13:10:51.937790Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-03T13:31:38.847Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.111",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.10",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q4.10",
                  "status": "affected",
                  "version": "2023.Q4.0",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The Document Library and the Adaptive Media modules in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions uses an incorrect cache-control header, which allows local users to obtain access to downloaded files via the browser\u0027s cache."
                }
              ],
              "value": "The Document Library and the Adaptive Media modules in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions uses an incorrect cache-control header, which allows local users to obtain access to downloaded files via the browser\u0027s cache."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "LOCAL",
                "baseScore": 4.6,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-525",
                  "description": "CWE-525: Use of Web Browser Cache Containing Sensitive Information",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-31T23:34:20.166Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62276"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62276",
        "datePublished": "2025-10-31T23:34:20.166Z",
        "dateReserved": "2025-10-09T20:58:54.403Z",
        "dateUpdated": "2025-11-03T13:31:38.847Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-62267 (GCVE-0-2025-62267)

    Vulnerability from cvelistv5 – Published: 2025-10-31 18:12 – Updated: 2025-11-03 15:48
    VLAI
    Summary
    Multiple cross-site scripting (XSS) vulnerabilities in web content template’s select structure page in Liferay Portal 7.4.3.35 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 update 35 through update 92 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a user’s (1) First Name, (2) Middle Name, or (3) Last Name text field.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.3.35 , ≤ 7.4.3.111 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.4.13-u35 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.10 (maven)
    Affected: 2023.Q4.0 , ≤ 2023.Q4.10 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62267",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-11-03T15:48:45.504319Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-11-03T15:48:52.733Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.111",
                  "status": "affected",
                  "version": "7.4.3.35",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13-u35",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.10",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q4.10",
                  "status": "affected",
                  "version": "2023.Q4.0",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Multiple cross-site scripting (XSS) vulnerabilities in web content template\u2019s select structure page in Liferay Portal 7.4.3.35 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 update 35 through update 92 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a user\u2019s (1) First Name, (2) Middle Name, or (3) Last Name text field."
                }
              ],
              "value": "Multiple cross-site scripting (XSS) vulnerabilities in web content template\u2019s select structure page in Liferay Portal 7.4.3.35 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 update 35 through update 92 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a user\u2019s (1) First Name, (2) Middle Name, or (3) Last Name text field."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 4.6,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "HIGH",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or \u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-31T18:12:50.703Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62267"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62267",
        "datePublished": "2025-10-31T18:12:50.703Z",
        "dateReserved": "2025-10-09T20:58:54.402Z",
        "dateUpdated": "2025-11-03T15:48:52.733Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-62264 (GCVE-0-2025-62264)

    Vulnerability from cvelistv5 – Published: 2025-10-31 17:32 – Updated: 2025-10-31 17:52
    VLAI
    Summary
    Reflected cross-site scripting (XSS) vulnerability in Languauge Override in Liferay Portal 7.4.3.8 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, and 7.4 update 4 through update 92 allows remote attackers to inject arbitrary web script or HTML via the `_com_liferay_portal_language_override_web_internal_portlet_PLOPortlet_selectedLanguageId` parameter.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.3.8 , ≤ 7.4.3.111 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.4.13-u4 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.10 (maven)
    Affected: 2023.Q4.0 , ≤ 2023.Q4.10 (maven)
    Create a notification for this product.
    Credits
    argon21
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62264",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-31T17:52:20.740845Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-31T17:52:36.076Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.111",
                  "status": "affected",
                  "version": "7.4.3.8",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13-u4",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.10",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q4.10",
                  "status": "affected",
                  "version": "2023.Q4.0",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "argon21"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Reflected cross-site scripting (XSS) vulnerability in Languauge Override in Liferay Portal 7.4.3.8 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, and 7.4 update 4 through update 92 allows remote attackers to inject arbitrary web script or HTML via the `_com_liferay_portal_language_override_web_internal_portlet_PLOPortlet_selectedLanguageId` parameter."
                }
              ],
              "value": "Reflected cross-site scripting (XSS) vulnerability in Languauge Override in Liferay Portal 7.4.3.8 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, and 7.4 update 4 through update 92 allows remote attackers to inject arbitrary web script or HTML via the `_com_liferay_portal_language_override_web_internal_portlet_PLOPortlet_selectedLanguageId` parameter."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 5.1,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or \u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-31T17:32:01.861Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62264"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62264",
        "datePublished": "2025-10-31T17:32:01.861Z",
        "dateReserved": "2025-10-09T20:58:53.012Z",
        "dateUpdated": "2025-10-31T17:52:36.076Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-62265 (GCVE-0-2025-62265)

    Vulnerability from cvelistv5 – Published: 2025-10-30 18:30 – Updated: 2025-10-30 19:04
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in the Blogs widget in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.8, 7.4 GA through update 92, 7.3 GA through update 36, and older unsupported versions allows remote attackers to inject arbitrary web script or HTML via a crafted <iframe> injected into a blog entry's “Content” text field The Blogs widget in Liferay DXP does not add the sandbox attribute to <iframe> elements, which allows remote attackers to access the parent page via scripts and links in the frame page.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.111 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.8 (maven)
    Affected: 2023.Q4.0 , ≤ 2023.Q4.10 (maven)
    Create a notification for this product.
    Credits
    foobar7
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62265",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-30T19:04:40.379081Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-30T19:04:48.068Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.111",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.8",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q4.10",
                  "status": "affected",
                  "version": "2023.Q4.0",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "foobar7"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Cross-site scripting (XSS) vulnerability in the Blogs widget in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.8, 7.4 GA through update 92, 7.3 GA through update 36, and older unsupported versions allows remote attackers to inject arbitrary web script or HTML via a crafted \u0026lt;iframe\u0026gt; injected into a blog entry\u0027s \u201cContent\u201d text field \u003cbr\u003e\u003cbr\u003eThe Blogs widget in Liferay DXP does not add the sandbox attribute to \u0026lt;iframe\u0026gt; elements, which allows remote attackers to access the parent page via scripts and links in the frame page."
                }
              ],
              "value": "Cross-site scripting (XSS) vulnerability in the Blogs widget in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.8, 7.4 GA through update 92, 7.3 GA through update 36, and older unsupported versions allows remote attackers to inject arbitrary web script or HTML via a crafted \u003ciframe\u003e injected into a blog entry\u0027s \u201cContent\u201d text field \n\nThe Blogs widget in Liferay DXP does not add the sandbox attribute to \u003ciframe\u003e elements, which allows remote attackers to access the parent page via scripts and links in the frame page."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 4.8,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "LOW",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or \u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-30T18:30:35.960Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62265"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62265",
        "datePublished": "2025-10-30T18:30:35.960Z",
        "dateReserved": "2025-10-09T20:58:53.012Z",
        "dateUpdated": "2025-10-30T19:04:48.068Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-62266 (GCVE-0-2025-62266)

    Vulnerability from cvelistv5 – Published: 2025-10-30 17:37 – Updated: 2025-10-30 19:06
    VLAI
    Summary
    By default, Liferay Portal 7.4.0 through 7.4.3.119, and older unsupported versions, and Liferay DXP 2024.Q1.1 through 2024.Q1.5, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions is vulnerable to DNS rebinding attacks, which allows remote attackers to redirect users to arbitrary external URLs. This vulnerability can be mitigated by changing the redirect URL security from IP to domain.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-601 - URL Redirection to Untrusted Site ('Open Redirect')
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.119 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.10 (maven)
    Affected: 2023.Q4.0 , ≤ 2023.Q4.10 (maven)
    Affected: 2024.Q1.1 , ≤ 2024.Q1.5 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62266",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-30T19:06:36.738279Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-30T19:06:43.671Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.119",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.10",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q4.10",
                  "status": "affected",
                  "version": "2023.Q4.0",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2024.Q1.5",
                  "status": "affected",
                  "version": "2024.Q1.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "By default, Liferay Portal 7.4.0 through 7.4.3.119, and older unsupported versions, and Liferay DXP 2024.Q1.1 through 2024.Q1.5, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions is vulnerable to DNS rebinding attacks, which allows remote attackers to redirect users to arbitrary external URLs. This vulnerability can be mitigated by changing the redirect URL security from IP to domain."
                }
              ],
              "value": "By default, Liferay Portal 7.4.0 through 7.4.3.119, and older unsupported versions, and Liferay DXP 2024.Q1.1 through 2024.Q1.5, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions is vulnerable to DNS rebinding attacks, which allows remote attackers to redirect users to arbitrary external URLs. This vulnerability can be mitigated by changing the redirect URL security from IP to domain."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 5.1,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-601",
                  "description": "CWE-601 URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-30T18:35:11.229Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62256"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62266",
        "datePublished": "2025-10-30T17:37:21.375Z",
        "dateReserved": "2025-10-09T20:58:53.012Z",
        "dateUpdated": "2025-10-30T19:06:43.671Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-62257 (GCVE-0-2025-62257)

    Vulnerability from cvelistv5 – Published: 2025-10-29 23:24 – Updated: 2025-10-30 17:41
    VLAI
    Summary
    Password enumeration vulnerability in Liferay Portal 7.4.0 through 7.4.3.119, and older unsupported versions, and Liferay DXP 2024.Q1.1 through 2024.Q1.5, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions allows remote attackers to determine a user’s password even if account lockout is enabled via brute force attack.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-307 - Improper Restriction of Excessive Authentication Attempts
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.119 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.10 (maven)
    Affected: 2023.Q4.0 , ≤ 2023.Q4.10 (maven)
    Affected: 2024.Q1.1 , ≤ 2024.Q1.5 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62257",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-30T14:08:10.447289Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-30T14:08:20.972Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.119",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.10",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q4.10",
                  "status": "affected",
                  "version": "2023.Q4.0",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2024.Q1.5",
                  "status": "affected",
                  "version": "2024.Q1.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Password enumeration vulnerability in Liferay Portal 7.4.0 through 7.4.3.119, and older unsupported versions, and Liferay DXP 2024.Q1.1 through 2024.Q1.5, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions allows remote attackers to determine a user\u2019s password even if account lockout is enabled via brute force attack."
                }
              ],
              "value": "Password enumeration vulnerability in Liferay Portal 7.4.0 through 7.4.3.119, and older unsupported versions, and Liferay DXP 2024.Q1.1 through 2024.Q1.5, 2023.Q4.0 through 2023.Q4.10, 2023.Q3.1 through 2023.Q3.10, 7.4 GA through update 92, and older unsupported versions allows remote attackers to determine a user\u2019s password even if account lockout is enabled via brute force attack."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "PRESENT",
                "attackVector": "NETWORK",
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-307",
                  "description": "CWE-307 Improper Restriction of Excessive Authentication Attempts",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-30T17:41:13.870Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62257"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62257",
        "datePublished": "2025-10-29T23:24:42.740Z",
        "dateReserved": "2025-10-09T20:58:53.011Z",
        "dateUpdated": "2025-10-30T17:41:13.870Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-62258 (GCVE-0-2025-62258)

    Vulnerability from cvelistv5 – Published: 2025-10-27 22:56 – Updated: 2025-10-28 14:59
    VLAI
    Summary
    CSRF vulnerability in Headless API in Liferay Portal 7.4.0 through 7.4.3.107, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows remote attackers to execute any Headless API via the `endpoint` parameter.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-352 - Cross-Site Request Forgery (CSRF)
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.107 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.3.10 , ≤ 7.3.10-u35 (maven)
    Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.4 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62258",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-28T14:59:44.742081Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-28T14:59:58.126Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.107",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.3.10-u35",
                  "status": "affected",
                  "version": "7.3.10",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.4",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "CSRF vulnerability in Headless API in Liferay Portal 7.4.0 through 7.4.3.107, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows remote attackers to execute any Headless API via the `endpoint` parameter."
                }
              ],
              "value": "CSRF vulnerability in Headless API in Liferay Portal 7.4.0 through 7.4.3.107, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows remote attackers to execute any Headless API via the `endpoint` parameter."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 7,
                "baseSeverity": "HIGH",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "HIGH",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-352",
                  "description": "CWE-352 Cross-Site Request Forgery (CSRF)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-27T22:56:21.041Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62258"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62258",
        "datePublished": "2025-10-27T22:56:21.041Z",
        "dateReserved": "2025-10-09T20:58:53.011Z",
        "dateUpdated": "2025-10-28T14:59:58.126Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-62259 (GCVE-0-2025-62259)

    Vulnerability from cvelistv5 – Published: 2025-10-27 22:13 – Updated: 2025-10-28 19:48
    VLAI
    Summary
    Liferay Portal 7.4.0 through 7.4.3.109, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit access to APIs before a user has verified their email address, which allows remote users to access and edit content via the API.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-863 - Incorrect Authorization
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.109 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.3.10 , ≤ 7.3.10-u35 (maven)
    Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.4 (maven)
    Create a notification for this product.
    Credits
    4rth4s
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62259",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-28T19:47:44.589308Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-28T19:48:15.967Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.109",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.3.10-u35",
                  "status": "affected",
                  "version": "7.3.10",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.4",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "4rth4s"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Liferay Portal 7.4.0 through 7.4.3.109, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit access to APIs before a user has verified their email address, which allows remote users to access and edit content via the API."
                }
              ],
              "value": "Liferay Portal 7.4.0 through 7.4.3.109, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit access to APIs before a user has verified their email address, which allows remote users to access and edit content via the API."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-863",
                  "description": "CWE-863 Incorrect Authorization",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-27T22:13:35.880Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62259"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62259",
        "datePublished": "2025-10-27T22:13:35.880Z",
        "dateReserved": "2025-10-09T20:58:53.011Z",
        "dateUpdated": "2025-10-28T19:48:15.967Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-62260 (GCVE-0-2025-62260)

    Vulnerability from cvelistv5 – Published: 2025-10-27 21:44 – Updated: 2025-10-28 15:01
    VLAI
    Summary
    Liferay Portal 7.4.0 through 7.4.3.99, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit the number of objects returned from Headless API requests, which allows remote attackers to perform denial-of-service (DoS) attacks on the application by executing a request that returns a large number of objects.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-400 - Uncontrolled Resource Consumption
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.99 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.3.10 , ≤ 7.3.10-u35 (maven)
    Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.4 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62260",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-28T15:01:15.628675Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-28T15:01:26.622Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.99",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.3.10-u35",
                  "status": "affected",
                  "version": "7.3.10",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.4",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Liferay Portal 7.4.0 through 7.4.3.99, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit the number of objects returned from Headless API requests, which allows remote attackers to perform denial-of-service (DoS) attacks on the application by executing a request that returns a large number of objects."
                }
              ],
              "value": "Liferay Portal 7.4.0 through 7.4.3.99, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit the number of objects returned from Headless API requests, which allows remote attackers to perform denial-of-service (DoS) attacks on the application by executing a request that returns a large number of objects."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 7.1,
                "baseSeverity": "HIGH",
                "privilegesRequired": "LOW",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "HIGH",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-400",
                  "description": "CWE-400 Uncontrolled Resource Consumption",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-27T21:44:08.185Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62260"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62260",
        "datePublished": "2025-10-27T21:44:08.185Z",
        "dateReserved": "2025-10-09T20:58:53.011Z",
        "dateUpdated": "2025-10-28T15:01:26.622Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-62261 (GCVE-0-2025-62261)

    Vulnerability from cvelistv5 – Published: 2025-10-27 21:11 – Updated: 2025-10-28 14:27
    VLAI
    Summary
    Liferay Portal 7.4.0 through 7.4.3.99, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 34, and older unsupported versions stores password reset tokens in plain text, which allows attackers with access to the database to obtain the token, reset a user’s password and take over the user’s account.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-312 - Cleartext Storage of Sensitive Information
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.99 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.3.10 , ≤ 7.3.10-u34 (maven)
    Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.4 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62261",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-28T14:27:39.740720Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-28T14:27:47.375Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.99",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.3.10-u34",
                  "status": "affected",
                  "version": "7.3.10",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.4",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Liferay Portal 7.4.0 through 7.4.3.99, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 34, and older unsupported versions stores password reset tokens in plain text, which allows attackers with access to the database to obtain the token, reset a user\u2019s password and take over the user\u2019s account."
                }
              ],
              "value": "Liferay Portal 7.4.0 through 7.4.3.99, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 34, and older unsupported versions stores password reset tokens in plain text, which allows attackers with access to the database to obtain the token, reset a user\u2019s password and take over the user\u2019s account."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "HIGH",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "HIGH",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-312",
                  "description": "CWE-312 Cleartext Storage of Sensitive Information",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-27T21:11:46.893Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62261"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62261",
        "datePublished": "2025-10-27T21:11:46.893Z",
        "dateReserved": "2025-10-09T20:58:53.011Z",
        "dateUpdated": "2025-10-28T14:27:47.375Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-62262 (GCVE-0-2025-62262)

    Vulnerability from cvelistv5 – Published: 2025-10-27 20:39 – Updated: 2025-10-28 14:41
    VLAI
    Summary
    Information exposure through log file vulnerability in LDAP import feature in Liferay Portal 7.4.0 through 7.4.3.97, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows local users to view user email address in the log files.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-532 - Insertion of Sensitive Information into Log File
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.97 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.3.10 , ≤ 7.3.10-u35 (maven)
    Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.4 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62262",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-28T14:35:34.828108Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-28T14:41:31.296Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.97",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.3.10-u35",
                  "status": "affected",
                  "version": "7.3.10",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.4",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Information exposure through log file vulnerability in LDAP import feature in Liferay Portal 7.4.0 through 7.4.3.97, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows local users to view user email address in the log files."
                }
              ],
              "value": "Information exposure through log file vulnerability in LDAP import feature in Liferay Portal 7.4.0 through 7.4.3.97, and older unsupported versions, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows local users to view user email address in the log files."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "LOCAL",
                "baseScore": 4.6,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "HIGH",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-532",
                  "description": "CWE-532 Insertion of Sensitive Information into Log File",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-27T20:39:23.416Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62263"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62262",
        "datePublished": "2025-10-27T20:39:23.416Z",
        "dateReserved": "2025-10-09T20:58:53.011Z",
        "dateUpdated": "2025-10-28T14:41:31.296Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-62263 (GCVE-0-2025-62263)

    Vulnerability from cvelistv5 – Published: 2025-10-27 19:38 – Updated: 2025-10-27 20:24
    VLAI
    Summary
    Multiple cross-site scripting (XSS) vulnerabilities in Liferay Portal 7.3.7 through 7.4.3.103, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 service pack 3 through update 36 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into an Account Role’s “Title” text field to (1) view account role page, or (2) select account role page. Multiple cross-site scripting (XSS) vulnerabilities in Liferay Portal 7.3.7 through 7.4.3.103, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 service pack 3 through update 36 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into an Organization’s “Name” text field to (1) view account page, (2) view account organization page, or (3) select account organization page.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.3.7 , ≤ 7.4.3.103 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.3.10-sp3 , ≤ 7.3.10-u36 (maven)
    Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.4 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62263",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-27T20:24:32.580002Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-27T20:24:49.578Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.103",
                  "status": "affected",
                  "version": "7.3.7",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.3.10-u36",
                  "status": "affected",
                  "version": "7.3.10-sp3",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.4",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Multiple cross-site scripting (XSS) vulnerabilities in Liferay Portal 7.3.7 through 7.4.3.103, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 service pack 3 through update 36 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into an Account Role\u2019s \u201cTitle\u201d text field to (1) view account role page, or (2) select account role page.\u003cbr\u003e\u003cbr\u003eMultiple cross-site scripting (XSS) vulnerabilities in Liferay Portal 7.3.7 through 7.4.3.103, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 service pack 3 through update 36 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into an Organization\u2019s \u201cName\u201d text field to (1) view account page, (2) view account organization page, or (3) select account organization page."
                }
              ],
              "value": "Multiple cross-site scripting (XSS) vulnerabilities in Liferay Portal 7.3.7 through 7.4.3.103, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 service pack 3 through update 36 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into an Account Role\u2019s \u201cTitle\u201d text field to (1) view account role page, or (2) select account role page.\n\nMultiple cross-site scripting (XSS) vulnerabilities in Liferay Portal 7.3.7 through 7.4.3.103, and Liferay DXP 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 service pack 3 through update 36 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into an Organization\u2019s \u201cName\u201d text field to (1) view account page, (2) view account organization page, or (3) select account organization page."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 4.8,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "LOW",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or \u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-27T19:38:44.073Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62263"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62263",
        "datePublished": "2025-10-27T19:38:44.073Z",
        "dateReserved": "2025-10-09T20:58:53.011Z",
        "dateUpdated": "2025-10-27T20:24:49.578Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-62253 (GCVE-0-2025-62253)

    Vulnerability from cvelistv5 – Published: 2025-10-27 18:54 – Updated: 2025-10-27 19:38
    VLAI
    Summary
    Open redirect vulnerability in page administration in Liferay Portal 7.4.0 through 7.4.3.97, and older unsupported versions, and Liferay DXP 2023.Q4.0, 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows remote attackers to redirect users to arbitrary external URLs via the _com_liferay_layout_admin_web_portlet_GroupPagesPortlet_redirect parameter.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-601 - URL Redirection to Untrusted Site ('Open Redirect')
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.97 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.3.10 , ≤ 7.3.10-u35 (maven)
    Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.4 (maven)
    Create a notification for this product.
    Credits
    Abderrahmane BOUNHIDJA
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62253",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-27T19:38:08.810962Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-27T19:38:22.629Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.97",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.3.10-u35",
                  "status": "affected",
                  "version": "7.3.10",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.4",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "cpeApplicability": [
            {
              "nodes": [
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:a:liferay:portal:*:*:*:*:*:*:*:*",
                      "versionEndIncluding": "7.4.3.97",
                      "versionStartIncluding": "7.4.0",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                },
                {
                  "cpeMatch": [
                    {
                      "criteria": "cpe:2.3:a:liferay:dxp:*:*:*:*:*:*:*:*",
                      "versionEndIncluding": "7.3.10-u35",
                      "versionStartIncluding": "7.3.10",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:liferay:dxp:*:*:*:*:*:*:*:*",
                      "versionEndIncluding": "7.4.13-u92",
                      "versionStartIncluding": "7.4.13",
                      "vulnerable": true
                    },
                    {
                      "criteria": "cpe:2.3:a:liferay:dxp:*:*:*:*:*:*:*:*",
                      "versionEndIncluding": "2023.q3.4",
                      "versionStartIncluding": "2023.q3.1",
                      "vulnerable": true
                    }
                  ],
                  "negate": false,
                  "operator": "OR"
                }
              ],
              "operator": "OR"
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Abderrahmane BOUNHIDJA"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Open redirect vulnerability in page administration in Liferay Portal 7.4.0 through 7.4.3.97, and older unsupported versions, and Liferay DXP 2023.Q4.0, 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows remote attackers to redirect users to arbitrary external URLs via the _com_liferay_layout_admin_web_portlet_GroupPagesPortlet_redirect parameter."
                }
              ],
              "value": "Open redirect vulnerability in page administration in Liferay Portal 7.4.0 through 7.4.3.97, and older unsupported versions, and Liferay DXP 2023.Q4.0, 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions allows remote attackers to redirect users to arbitrary external URLs via the _com_liferay_layout_admin_web_portlet_GroupPagesPortlet_redirect parameter."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "LOW",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-601",
                  "description": "CWE-601 URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-27T19:29:10.926Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62253"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62253",
        "datePublished": "2025-10-27T18:54:47.929Z",
        "dateReserved": "2025-10-09T20:58:51.717Z",
        "dateUpdated": "2025-10-27T19:38:22.629Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-62254 (GCVE-0-2025-62254)

    Vulnerability from cvelistv5 – Published: 2025-10-23 22:16 – Updated: 2025-10-24 16:58
    VLAI
    Summary
    The ComboServlet in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.2, 2023.Q3.1 through 2023.Q3.5, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit the number or size of the files it will combine, which allows remote attackers to create very large responses that lead to a denial of service attack via the URL query string.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
    Assigner
    Impacted products
    Vendor Product Version
    Liferay Portal Affected: 7.4.0 , ≤ 7.4.3.111 (maven)
    Create a notification for this product.
    Liferay DXP Affected: 7.3.10 , ≤ 7.3.10-u35 (maven)
    Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
    Affected: 2023.Q3.1 , ≤ 2023.Q3.5 (maven)
    Affected: 2023.Q4.0 , ≤ 2023.Q4.2 (maven)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-62254",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-24T16:56:03.087326Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-24T16:58:53.772Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Portal",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.4.3.111",
                  "status": "affected",
                  "version": "7.4.0",
                  "versionType": "maven"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "product": "DXP",
              "vendor": "Liferay",
              "versions": [
                {
                  "lessThanOrEqual": "7.3.10-u35",
                  "status": "affected",
                  "version": "7.3.10",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "7.4.13-u92",
                  "status": "affected",
                  "version": "7.4.13",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q3.5",
                  "status": "affected",
                  "version": "2023.Q3.1",
                  "versionType": "maven"
                },
                {
                  "lessThanOrEqual": "2023.Q4.2",
                  "status": "affected",
                  "version": "2023.Q4.0",
                  "versionType": "maven"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The ComboServlet in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.2, 2023.Q3.1 through 2023.Q3.5, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions  does not limit the number or size of the files it will combine, which allows remote attackers to create very large responses that lead to a denial of service attack via the URL query string."
                }
              ],
              "value": "The ComboServlet in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.2, 2023.Q3.1 through 2023.Q3.5, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions  does not limit the number or size of the files it will combine, which allows remote attackers to create very large responses that lead to a denial of service attack via the URL query string."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.9,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "LOW",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-23T22:16:34.334Z",
            "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
            "shortName": "Liferay"
          },
          "references": [
            {
              "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-62254"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "assignerShortName": "Liferay",
        "cveId": "CVE-2025-62254",
        "datePublished": "2025-10-23T22:16:34.334Z",
        "dateReserved": "2025-10-09T20:58:51.717Z",
        "dateUpdated": "2025-10-24T16:58:53.772Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }