Description XSS exists in Liferay Portal before 7.0 CE GA4(7.0.3) via a Knowledge Base article title. Remediation References CVE-2017-12647 Related Vulnerabilities Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6388) PHP Improper Input Validation Vulnerability (CVE-2006-7243) WordPress Plugin Woo Import Export Arbitrary File Deletion (1.0) WordPress Plugin VideoWhisper Video Presentation Multiple Cross-Site Scripting Vulnerabilities (3.25) MySQL CVE-2022-21594 Vulnerability (CVE-2022-21594) Severity Medium Classification CVE-2017-12647 CWE-707 Tags Missing Update Known Vulnerabilities