CVE-2024-25148

Name of the Vulnerable Software and Affected Versions Liferay Portal versions 7.2.0 through 7.4.1 Liferay DXP 7.3 before service pack 3 Liferay DXP 7.2 before fix pack 15

Description The doAsUserId URL parameter may be leaked when creating linked content using the WYSIWYG editor while impersonating a user. This could allow remote authenticated users to impersonate a user after accessing the linked content.

Recommendations For Liferay Portal versions 7.2.0 through 7.4.1, update to a version that includes the fix for the doAsUserId parameter leak. For Liferay DXP 7.3, apply service pack 3 or later to address the issue. For Liferay DXP 7.2, apply fix pack 15 or later to resolve the problem. As a temporary workaround, consider restricting access to the WYSIWYG editor when impersonating a user to minimize the risk of exploitation.