Description
XSS exists in Liferay Portal before 7.0 CE GA4(7.0.3) via an invalid portletId.
Remediation
References
Related Vulnerabilities
WordPress Plugin BuddyPress Edit Activity Cross-Site Scripting (1.0.5)
WordPress Plugin WP?????? Cross-Site Scripting (1.3.9)
WordPress Plugin Newsletter Meenews 'idnews' Parameter Cross-Site Scripting (5.1.0)
WordPress Plugin WPML (WordPress Multilingual) Cross-Site Scripting (3.6.3)
WordPress Plugin Advertizer 'id' Parameter SQL Injection (1.0)