Description XSS exists in Liferay Portal before 7.0 CE GA4(7.0.3) via a bookmark URL. Remediation References CVE-2017-12648 Related Vulnerabilities Squid Improper Input Validation Vulnerability (CVE-2014-3609) MySQL CVE-2013-1552 Vulnerability (CVE-2013-1552) WordPress 5.7.x Multiple Vulnerabilities (5.7 - 5.7.10) WordPress Plugin WP Survey And Quiz Tool 'action' Parameter Cross-Site Scripting (1.2.1) WordPress Plugin Coditor-Code Editor Security Bypass (1.1) Severity Medium Classification CVE-2017-12648 CWE-707 Tags Missing Update Known Vulnerabilities