Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2011-1504

Cross-site scripting (XSS) vulnerability in Liferay Portal Community Edition (CE) 5.x and 6.x before 6.0.6 GA allows remote authenticated users to inject arbitrary web script or HTML via a blog title.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 55.6%
CVSS Severity
CVSS v2 Score 3.5
Products affected by CVE-2011-1504
  • Liferay » Portal » Version: 5.0.0
    cpe:2.3:a:liferay:portal:5.0.0
  • Liferay » Portal » Version: 5.0.1
    cpe:2.3:a:liferay:portal:5.0.1
  • Liferay » Portal » Version: 5.1.0
    cpe:2.3:a:liferay:portal:5.1.0
  • Liferay » Portal » Version: 5.1.1
    cpe:2.3:a:liferay:portal:5.1.1
  • Liferay » Portal » Version: 5.1.2
    cpe:2.3:a:liferay:portal:5.1.2
  • Liferay » Portal » Version: 5.2.0
    cpe:2.3:a:liferay:portal:5.2.0
  • Liferay » Portal » Version: 5.2.1
    cpe:2.3:a:liferay:portal:5.2.1
  • Liferay » Portal » Version: 5.2.2
    cpe:2.3:a:liferay:portal:5.2.2
  • Liferay » Portal » Version: 5.2.3
    cpe:2.3:a:liferay:portal:5.2.3
  • Liferay » Portal » Version: 6.0.0
    cpe:2.3:a:liferay:portal:6.0.0
  • Liferay » Portal » Version: 6.0.1
    cpe:2.3:a:liferay:portal:6.0.1
  • Liferay » Portal » Version: 6.0.2
    cpe:2.3:a:liferay:portal:6.0.2
  • Liferay » Portal » Version: 6.0.3
    cpe:2.3:a:liferay:portal:6.0.3
  • Liferay » Portal » Version: 6.0.4
    cpe:2.3:a:liferay:portal:6.0.4
  • Liferay » Portal » Version: 6.0.5
    cpe:2.3:a:liferay:portal:6.0.5


Products
Pricing
Contact Us

Shodan ® - All rights reserved