Description XSS exists in Liferay Portal before 7.0 CE GA4(7.0.3) via a bookmark URL. Remediation References CVE-2017-12648 Related Vulnerabilities MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-3550) PHP Other Vulnerability (CVE-2007-4255) WordPress Plugin Carousel slideshow 'swfupload.swf' Cross-Site Scripting (3.10) MySQL CVE-2021-35537 Vulnerability (CVE-2021-35537) Jenkins Server-Side Request Forgery (SSRF) Vulnerability (CVE-2018-1000067) Severity Medium Classification CVE-2017-12648 CWE-707 Tags Missing Update Known Vulnerabilities