Description
Cross-site scripting (XSS) vulnerability in Liferay Portal Community Edition (CE) 6.x before 6.0.6 GA, when Apache Tomcat is used, allows remote authenticated users to inject arbitrary web script or HTML via a message title, a different vulnerability than CVE-2004-2030.
Remediation
References
Related Vulnerabilities
XWiki CVE-2023-40573 Vulnerability (CVE-2023-40573)
Drupal Core 7.x Information Disclosure (7.0 - 7.14)
WordPress Improper Input Validation Vulnerability (CVE-2013-4339)
PHP Other Vulnerability (CVE-2004-1065)
WordPress Plugin GeoDirectory Location Manager Multiple SQL Injection Vulnerabilities (2.1.0.9)