Description XSS exists in Liferay Portal before 7.0 CE GA4(7.0.3) via a login name, password, or e-mail address. Remediation References CVE-2017-12646 Related Vulnerabilities SharePoint CVE-2020-16942 Vulnerability (CVE-2020-16942) Joomla! Core 1.5.x Security Bypass (1.5.0 - 1.5.25) phpMyAdmin Cleartext Storage of Sensitive Information Vulnerability (CVE-2008-1567) Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2014-9115) WordPress Plugin BetterOptin Cross-Site Scripting (1.2.4) Severity Medium Classification CVE-2017-12646 CWE-707 Tags Missing Update Known Vulnerabilities