Description XSS exists in Liferay Portal before 7.0 CE GA4(7.0.3) via a Knowledge Base article title. Remediation References CVE-2017-12647 Related Vulnerabilities WordPress Plugin Email Subscribers by Icegram Express-Email Marketing, Newsletters, Automation for WordPress & WooCommerce SQL Injection (5.7.14) WordPress Plugin Gravity Forms Cross-Site Scripting (1.9.15.11) WordPress Plugin CM Download Manager Cross-Site Scripting (2.7.0) Liferay DXP URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2024-25608) Joomla! Core Multiple Vulnerabilities (1.5.0 - 3.8.11) Severity Medium Classification CVE-2017-12647 CWE-707 Tags Missing Update Known Vulnerabilities