Description XSS exists in Liferay Portal before 7.0 CE GA4(7.0.3) via an invalid portletId. Remediation References CVE-2017-12645 Related Vulnerabilities WordPress Plugin BSDev.at-Importer:Serendipity Cross-Site Scripting (0.0.1) WordPress Plugin Event Calendar WD-Responsive Event Calendar Cross-Site Scripting (1.1.44) MySQL CVE-2021-2046 Vulnerability (CVE-2021-2046) TYPO3 Improper Input Validation Vulnerability (CVE-2011-4904) PHP Other Vulnerability (CVE-2007-1890) Severity Medium Classification CVE-2017-12645 CWE-707 Tags Missing Update Known Vulnerabilities