CVE-2024-25609

Name of the Vulnerable Software and Affected Versions Liferay Portal versions 7.2.0 through 7.4.3.12 Liferay DXP 7.4 before update 9 Liferay DXP 7.3 service pack 3 Liferay DXP 7.2 fix pack 15 through 18

Description The issue allows remote attackers to redirect users to arbitrary external URLs via certain parameters, including the redirect parameter and FORWARD URL parameter, by circumventing the HtmlUtil.escapeRedirect function using two forward slashes. This is a result of an incomplete fix.

Recommendations For Liferay Portal versions 7.2.0 through 7.4.3.12, update to a version that includes the complete fix for this issue. For Liferay DXP 7.4, apply update 9 or later. For Liferay DXP 7.3, apply service pack 3 or later. For Liferay DXP 7.2, apply fix pack 19 or later, as fix packs 15 through 18 are affected. As a temporary workaround, consider restricting the use of the redirect parameter and FORWARD URL parameter until a patch is available.