Description
Reflected cross-site scripting (XSS) vulnerability in Liferay Portal 7.4.0 through 7.4.3.38, and Liferay DXP 7.4 GA through update 38 allows remote attackers to execute arbitrary web script or HTML via Dispatch name field
Remediation
References
Related Vulnerabilities
WordPress Plugin Custom 404 Pro Cross-Site Request Forgery (3.7.1)
WordPress Plugin Rezgo Online Booking Cross-Site Scripting (1.8.6)
WordPress Plugin Events Manager Cross-Site Scripting (5.9.5)
Oracle Database Server CVE-2012-3146 Vulnerability (CVE-2012-3146)
Joomla! Core 1.0.x Multiple Vulnerabilities (1.0.0 - 1.0.12)