CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-42114

A Cross-site scripting (XSS) vulnerability in the Role module's edit role assignees page in Liferay Portal 7.4.0 through 7.4.3.36, and Liferay DXP 7.4 before update 37 allows remote attackers to inject arbitrary web script or HTML.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 38.1%

CVSS Severity

CVSS v3 Score 5.4

References

Products affected by CVE-2022-42114

Liferay » Dxp » Version: N/A

cpe:2.3:a:liferay:dxp:-
Liferay » Dxp » Version: 7.0

cpe:2.3:a:liferay:dxp:7.0
Liferay » Dxp » Version: 7.1

cpe:2.3:a:liferay:dxp:7.1
Liferay » Dxp » Version: 7.2

cpe:2.3:a:liferay:dxp:7.2
Liferay » Dxp » Version: 7.3

cpe:2.3:a:liferay:dxp:7.3
Liferay » Dxp » Version: 7.4

cpe:2.3:a:liferay:dxp:7.4
Liferay » Liferay Portal » Version: 7.4.0

cpe:2.3:a:liferay:liferay_portal:7.4.0
Liferay » Liferay Portal » Version: 7.4.1

cpe:2.3:a:liferay:liferay_portal:7.4.1
Liferay » Liferay Portal » Version: 7.4.2

cpe:2.3:a:liferay:liferay_portal:7.4.2
Liferay » Liferay Portal » Version: 7.4.3.10

cpe:2.3:a:liferay:liferay_portal:7.4.3.10
Liferay » Liferay Portal » Version: 7.4.3.11

cpe:2.3:a:liferay:liferay_portal:7.4.3.11
Liferay » Liferay Portal » Version: 7.4.3.12

cpe:2.3:a:liferay:liferay_portal:7.4.3.12
Liferay » Liferay Portal » Version: 7.4.3.13

cpe:2.3:a:liferay:liferay_portal:7.4.3.13
Liferay » Liferay Portal » Version: 7.4.3.14

cpe:2.3:a:liferay:liferay_portal:7.4.3.14
Liferay » Liferay Portal » Version: 7.4.3.15

cpe:2.3:a:liferay:liferay_portal:7.4.3.15
Liferay » Liferay Portal » Version: 7.4.3.16

cpe:2.3:a:liferay:liferay_portal:7.4.3.16
Liferay » Liferay Portal » Version: 7.4.3.17

cpe:2.3:a:liferay:liferay_portal:7.4.3.17
Liferay » Liferay Portal » Version: 7.4.3.18

cpe:2.3:a:liferay:liferay_portal:7.4.3.18
Liferay » Liferay Portal » Version: 7.4.3.19

cpe:2.3:a:liferay:liferay_portal:7.4.3.19
Liferay » Liferay Portal » Version: 7.4.3.20

cpe:2.3:a:liferay:liferay_portal:7.4.3.20
Liferay » Liferay Portal » Version: 7.4.3.21

cpe:2.3:a:liferay:liferay_portal:7.4.3.21
Liferay » Liferay Portal » Version: 7.4.3.22

cpe:2.3:a:liferay:liferay_portal:7.4.3.22
Liferay » Liferay Portal » Version: 7.4.3.23

cpe:2.3:a:liferay:liferay_portal:7.4.3.23
Liferay » Liferay Portal » Version: 7.4.3.24

cpe:2.3:a:liferay:liferay_portal:7.4.3.24
Liferay » Liferay Portal » Version: 7.4.3.25

cpe:2.3:a:liferay:liferay_portal:7.4.3.25
Liferay » Liferay Portal » Version: 7.4.3.26

cpe:2.3:a:liferay:liferay_portal:7.4.3.26
Liferay » Liferay Portal » Version: 7.4.3.27

cpe:2.3:a:liferay:liferay_portal:7.4.3.27
Liferay » Liferay Portal » Version: 7.4.3.28

cpe:2.3:a:liferay:liferay_portal:7.4.3.28
Liferay » Liferay Portal » Version: 7.4.3.29

cpe:2.3:a:liferay:liferay_portal:7.4.3.29
Liferay » Liferay Portal » Version: 7.4.3.30

cpe:2.3:a:liferay:liferay_portal:7.4.3.30
Liferay » Liferay Portal » Version: 7.4.3.31

cpe:2.3:a:liferay:liferay_portal:7.4.3.31
Liferay » Liferay Portal » Version: 7.4.3.32

cpe:2.3:a:liferay:liferay_portal:7.4.3.32
Liferay » Liferay Portal » Version: 7.4.3.33

cpe:2.3:a:liferay:liferay_portal:7.4.3.33
Liferay » Liferay Portal » Version: 7.4.3.34

cpe:2.3:a:liferay:liferay_portal:7.4.3.34
Liferay » Liferay Portal » Version: 7.4.3.35

cpe:2.3:a:liferay:liferay_portal:7.4.3.35
Liferay » Liferay Portal » Version: 7.4.3.36

cpe:2.3:a:liferay:liferay_portal:7.4.3.36
Liferay » Liferay Portal » Version: 7.4.3.4

cpe:2.3:a:liferay:liferay_portal:7.4.3.4
Liferay » Liferay Portal » Version: 7.4.3.5

cpe:2.3:a:liferay:liferay_portal:7.4.3.5
Liferay » Liferay Portal » Version: 7.4.3.6

cpe:2.3:a:liferay:liferay_portal:7.4.3.6
Liferay » Liferay Portal » Version: 7.4.3.7

cpe:2.3:a:liferay:liferay_portal:7.4.3.7
Liferay » Liferay Portal » Version: 7.4.3.8

cpe:2.3:a:liferay:liferay_portal:7.4.3.8
Liferay » Liferay Portal » Version: 7.4.3.9

cpe:2.3:a:liferay:liferay_portal:7.4.3.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-42114

Products

Pricing

Contact Us