Liferay: >> Liferay Enterprise Portal >> 4.3.0 Security Vulnerabilities
Multiple cross-site scripting (XSS) vulnerabilities in web/guest/home in the Liferay 4.3.0 portal in Novell Teaming 1.0 through SP3 (1.0.3) allow remote attackers to inject arbitrary web script or HTML via the (1) p_p_state or (2) p_p_mode parameters.
CVSS Score
4.3
EPSS Score
0.025
Published
2009-04-16