Henrik Bayer

**Name of the Vulnerable Software and Affected Versions** Liferay Portal versions 7.4.3.70 through 7.4.3.73 Liferay DXP 7.4 update 70 through 73 **Description** A cross-site scripting (XSS) issue exists in the Layout module's SEO configuration, allowing remote attackers to inject arbitrary web script or HTML via the ` com liferay layout admin web portlet GroupPagesPortlet backURL` parameter. This enables attackers to execute malicious scripts on the victim's browser. **Recommendations** For Liferay Portal versions 7.4.3.70 through 7.4.3.73, restrict access to the Layout module's SEO configuration until a patch is available. For Liferay DXP 7.4 update 70 through 73, avoid using the ` com liferay layout admin web portlet GroupPagesPortlet backURL` parameter in the affected API endpoint until the issue is resolved. As a temporary workaround, consider disabling the SEO configuration in the Layout module to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Liferay Portal versions 7.4.3.70 through 7.4.3.76 Liferay DXP 7.4 update 70 through 76 **Description** The issue is related to an open redirect vulnerability in the Layout module's SEO configuration. This vulnerability allows remote attackers to redirect users to arbitrary external URLs via the ` com liferay layout admin web portlet GroupPagesPortlet backURL` parameter. **Recommendations** For Liferay Portal versions 7.4.3.70 through 7.4.3.76, consider restricting access to the Layout module's SEO configuration until a patch is available. For Liferay DXP 7.4 update 70 through 76, avoid using the ` com liferay layout admin web portlet GroupPagesPortlet backURL` parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Liferay Portal versions 7.4.3.70 through 7.4.3.76 Liferay DXP 7.4 update 70 through 76 **Description** A cross-site request forgery (CSRF) issue in the Layout module's SEO configuration allows remote attackers to execute arbitrary code in the scripting console via the ` com liferay layout admin web portlet GroupPagesPortlet backURL` parameter. **Recommendations** For Liferay Portal versions 7.4.3.70 through 7.4.3.76, consider disabling the SEO configuration in the Layout module until a patch is available. For Liferay DXP 7.4 update 70 through 76, restrict access to the scripting console to minimize the risk of exploitation. Avoid using the ` com liferay layout admin web portlet GroupPagesPortlet backURL` parameter in the affected API endpoint until the issue is resolved.