Description
A Cross-site scripting (XSS) vulnerability in the Frontend Taglib module in Liferay Portal 7.3.2 through 7.4.3.16, and Liferay DXP 7.3 before update 6, and 7.4 before update 17 allows remote attackers to inject arbitrary web script or HTML.
Remediation
References
Related Vulnerabilities
WebLogic CVE-2022-21350 Vulnerability (CVE-2022-21350)
Oracle Database Server CVE-2006-0262 Vulnerability (CVE-2006-0262)
WordPress Plugin Car Demon Multiple Cross-Site Scripting Vulnerabilities (1.0.1)
WordPress Plugin All-in-One WP Migration Multiple Cross-Site Request Forgery Vulnerabilities (7.1)