Description
XSS exists in Liferay Portal before 7.0 CE GA4(7.0.3) via a crafted title or summary that is mishandled in the Web Content Display.
Remediation
References
Related Vulnerabilities
WordPress Plugin MailPoet Newsletters (Previous) Multiple Unspecified Vulnerabilities (2.7.1)
WordPress Plugin AdPlugg WordPress Ad Cross-Site Scripting (1.1.33)
Ruby Improper Authentication Vulnerability (CVE-2009-0642)
WordPress Plugin Keep Backup Daily Unspecified Vulnerability (2.0.3)
WordPress Plugin BuddyPress Extended Friendship Request Cross-Site Scripting (1.0.1)