Description XSS exists in Liferay Portal before 7.0 CE GA4(7.0.3) via a Knowledge Base article title. Remediation References CVE-2017-12647 Related Vulnerabilities PrestaShop Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-43789) WordPress Plugin GS Insever Portfolio Cross-Site Scripting (1.4.4) PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-4018) concrete5 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-6908) WordPress Plugin uTubeVideo Gallery Cross-Site Scripting (2.0.7) Severity Medium Classification CVE-2017-12647 CWE-707 Tags Missing Update Known Vulnerabilities