Description
A Cross-site scripting (XSS) vulnerability in the Frontend Taglib module in Liferay Portal 7.3.2 through 7.4.3.16, and Liferay DXP 7.3 before update 6, and 7.4 before update 17 allows remote attackers to inject arbitrary web script or HTML.
Remediation
References
Related Vulnerabilities
RubyGems Improper Authentication Vulnerability (CVE-2022-36073)
WordPress Plugin wpForo Forum Open Redirect (1.9.6)
WordPress Plugin WP SVG Icons Cross-Site Request Forgery (3.2.1)
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2987)
WordPress Plugin Maintenance Cross-Site Request Forgery (3.6.4)