GHSA-qwj8-qgpr-8crm
Suggest an improvement- Source
- https://github.com/advisories/GHSA-qwj8-qgpr-8crm
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/02/GHSA-qwj8-qgpr-8crm/GHSA-qwj8-qgpr-8crm.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-qwj8-qgpr-8crm
- Aliases
- Published
- 2024-02-08T06:30:23Z
- Modified
- 2024-10-02T18:51:03.274594Z
- Severity
-
- 8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N CVSS Calculator
- 8.6 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N CVSS Calculator
- Summary
- Liferay Portal vulnerable to user impersonation
- Details
-
In Liferay Portal 7.2.0 through 7.4.1, and older unsupported versions, and Liferay DXP 7.3 before service pack 3, 7.2 before fix pack 15, and older unsupported versions the
doAsUserIdURL parameter may get leaked when creating linked content using the WYSIWYG editor and while impersonating a user. This may allow remote authenticated users to impersonate a user after accessing the linked content. - Database specific
{ "nvd_published_at": "2024-02-08T04:15:08Z", "cwe_ids": [ "CWE-200", "CWE-201" ], "severity": "HIGH", "github_reviewed": true, "github_reviewed_at": "2024-02-08T18:31:19Z" }- References
Affected packages
Maven / com.liferay.portal:release.portal.bom
Package
- Name
- com.liferay.portal:release.portal.bom
- View open source insights on deps.dev
- Purl
- pkg:maven/com.liferay.portal/release.portal.bom
Maven / com.liferay.portal:release.dxp.bom
Package
- Name
- com.liferay.portal:release.dxp.bom
- View open source insights on deps.dev
- Purl
- pkg:maven/com.liferay.portal/release.dxp.bom
Maven / com.liferay.portal:release.dxp.bom
Package
- Name
- com.liferay.portal:release.dxp.bom
- View open source insights on deps.dev
- Purl
- pkg:maven/com.liferay.portal/release.dxp.bom