Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2022-42122 |
|
SQL Injection in sqli (CVE-2022-42122)
SQL injection in sqli (CVE-2022-42122). Successful exploitation can lead to full system takeover. Exploitable via ``title``.
|
| CVE-2022-42121 |
|
SQL Injection in sqli (CVE-2022-42121)
SQL injection in sqli (CVE-2022-42121). Successful exploitation can lead to full system takeover.
|
| CVE-2022-42120 |
|
SQL Injection in c (CVE-2022-42120)
SQL injection in c (CVE-2022-42120). Successful exploitation can lead to full system takeover. Exploitable via ``namespace``.
|
| CVE-2022-42119 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-42119)
cross-site scripting in liferay (CVE-2022-42119). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-42118 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-42118)
cross-site scripting in liferay (CVE-2022-42118). Risk of unauthorized operations or information disclosure. Exploitable via ``tag``.
|
| CVE-2022-38901 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-38901)
cross-site scripting in liferay (CVE-2022-38901). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-42114 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-42114)
cross-site scripting in liferay (CVE-2022-42114). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-42117 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-42117)
cross-site scripting in liferay (CVE-2022-42117). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-42116 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-42116)
cross-site scripting in liferay (CVE-2022-42116). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-42113 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-42113)
cross-site scripting in liferay (CVE-2022-42113). Risk of unauthorized operations or information disclosure. Exploitable via ``redirect``.
|
| CVE-2022-42112 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-42112)
cross-site scripting in liferay (CVE-2022-42112). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-38902 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-38902)
cross-site scripting in liferay (CVE-2022-38902). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-38512 |
|
Vulnerability in liferay (CVE-2022-38512)
vulnerability in liferay (CVE-2022-38512). Confidential information can be exposed externally.
|
| CVE-2022-28980 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-28980)
cross-site scripting in liferay (CVE-2022-28980). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-28977 |
|
Open Redirect in liferay (CVE-2022-28977)
vulnerability in liferay (CVE-2022-28977). Risk of unauthorized operations or information disclosure. Exploitable via ``FORWARD_URL``.
|
| CVE-2022-39975 |
|
Vulnerability in liferay (CVE-2022-39975)
vulnerability in liferay (CVE-2022-39975). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-28982 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-28982)
cross-site scripting in liferay (CVE-2022-28982). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-28978 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-28978)
cross-site scripting in liferay (CVE-2022-28978). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-28979 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2022-28979)
cross-site scripting in liferay (CVE-2022-28979). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-29049 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-29049)
cross-site scripting in liferay (CVE-2021-29049). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-29051 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-29051)
cross-site scripting in liferay (CVE-2021-29051). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-29048 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-29048)
cross-site scripting in liferay (CVE-2021-29048). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-29052 |
|
Vulnerability in liferay (CVE-2021-29052)
vulnerability in liferay (CVE-2021-29052). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-29053 |
|
SQL Injection in sqli (CVE-2021-29053)
SQL injection in sqli (CVE-2021-29053). Successful exploitation can lead to full system takeover.
|
| CVE-2021-29045 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-29045)
cross-site scripting in liferay (CVE-2021-29045). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-29046 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-29046)
cross-site scripting in liferay (CVE-2021-29046). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-29044 |
|
Cross-Site Scripting (XSS) in liferay (CVE-2021-29044)
cross-site scripting in liferay (CVE-2021-29044). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-29043 |
|
Vulnerability in liferay (CVE-2021-29043)
vulnerability in liferay (CVE-2021-29043). Confidential information can be exposed externally.
|
| CVE-2021-29041 |
|
Vulnerability in dos (CVE-2021-29041)
vulnerability in dos (CVE-2021-29041). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-29047 |
|
Authentication Bypass in liferay (CVE-2021-29047)
authentication bypass in liferay (CVE-2021-29047). Data can be tampered with by attackers.
|