Description
Liferay Portal through v7.4.0 and Liferay DXP through v7.1 were discovered to contain a cross-site scripting (XSS) vulnerability via the Gogo Shell module.
Remediation
References
Related Vulnerabilities
WordPress Plugin Browser Rejector Remote File Inclusion (2.10)
WordPress Plugin Catch Themes Demo Import Security Bypass (1.5)
WordPress Plugin WP Bannerize 'ajax_sorter.php' SQL Injection (2.8.7)
WordPress Plugin Post Pay Counter PHP Object Injection (2.730)
WordPress Plugin WP e-Commerce-Store Exporter Privilege Escalation (1.6.6)