Description
Unspecified vulnerability in the XSL Content portlet in Liferay Portal Community Edition (CE) 5.x and 6.x before 6.0.6 GA, when Apache Tomcat is used, allows remote attackers to execute arbitrary commands via unknown vectors.
Remediation
References
Related Vulnerabilities
SharePoint CVE-2023-21743 Vulnerability (CVE-2023-21743)
Joomla! Core Security Bypass (1.6.0 - 3.6.0)
WordPress 5.8 Multiple Vulnerabilities (5.8)
Liferay Portal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-26272)
phpMyFAQ Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2010-4558)