Topolik

#14745of 53,624
18.3Total CVSS
Vulnerabilities · 3
Medium
3
PT-2017-12625
6.1
2017-08-07
Liferay · Liferay Portal · CVE-2017-12646
**Name of the Vulnerable Software and Affected Versions** Liferay Portal versions prior to 7.0 CE GA4 **Description** A security issue exists where an attacker can exploit the system using a `login name`, `password`, or `e-mail address`. **Recommendations** For versions prior to 7.0 CE GA4, update to version 7.0 CE GA4 or later to resolve the issue.
PT-2017-12626
6.1
2017-08-07
Liferay · Liferay Portal · CVE-2017-12647
**Name of the Vulnerable Software and Affected Versions** Liferay Portal versions prior to 7.0 CE GA4 **Description** A cross-site scripting issue exists, allowing potential exploitation via a Knowledge Base article title. **Recommendations** For versions prior to 7.0 CE GA4, update to version 7.0 CE GA4 or later to resolve the issue.
PT-2017-12627
6.1
2017-08-07
Liferay · Liferay Portal · CVE-2017-12648
**Name of the Vulnerable Software and Affected Versions** Liferay Portal versions prior to 7.0 CE GA4 **Description** A cross-site scripting (XSS) issue exists, allowing potential exploitation via a bookmark URL. **Recommendations** For versions prior to 7.0 CE GA4, update to version 7.0 CE GA4 or later to resolve the issue.