CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Liferay: >> Liferay Enterprise Portal >> 4.1.3 Security Vulnerabilities

CVE-2008-0180

Cross-site scripting (XSS) vulnerability in themes/_unstyled/templates/init.vm in Liferay Portal 4.3.6 allows remote authenticated users to inject arbitrary web script or HTML via the Greeting field in a User Profile.

CVSS Score

4.3

EPSS Score

0.006

Published

2008-02-05

Page 1

Vulnerabilities

Vulnerable Software

Liferay: >> Liferay Enterprise Portal >> 4.1.3 Security Vulnerabilities

Products

Pricing

Contact Us