Description

** DISPUTED ** An issue was discovered in Liferay Portal CE 7.1.2 GA3. An attacker can use Liferay's Groovy script console to execute OS commands. Commands can be executed via a [command].execute() call, as demonstrated by "def cmd =" in the ServerAdminPortlet_script value to group/control_panel/manage. Valid credentials for an application administrator user account are required. NOTE: The developer disputes this as a vulnerability since it is a feature for administrators to run groovy scripts and therefore not a design flaw.

Remediation

References

CVE-2019-11444

Related Vulnerabilities

Joomla! Core 1.5.x Arbitrary File Upload (1.5.0 - 1.5.15)

Jenkins Deserialization of Untrusted Data Vulnerability (CVE-2018-1000861)

WordPress Plugin File Gallery Remote Code Execution (1.7.9)

WordPress Plugin WP Mobile Detector Cross-Site Scripting (3.2)

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-45038)

Severity

High

Classification

CVE-2019-11444 CWE-138

Tags

Missing Update Known Vulnerabilities