Liferay 6.2.3 CE GA4 OpenID XXE Injection...

- AV AC AU C I A
发布: 2016-06-02
修订: 2025-04-13

Liferay supports OpenID login which was found to make use of a version of openid4java that is vulnerable to XML External Entity (XXE) attacks. Liferay versions 6.2.3 CE GA4 and earlier are affected.

0%

漏洞利用/PoC

当前有1条漏洞利用/PoC

受影响的平台与产品

当前有0条受影响产品信息