Description

This alert was generated using only banner information. It may be a false positive.
You are using a vulnerable Liferay Portal. A lot of vulnerabilities were reported for this version of the Liferay Portal. Consult Web References for more information about the affected version and the vulnerabilities that were reported.

Remediation

Upgrade Liferay Portal to the latest version.

References

Liferay Portal 6.x vulnerabilities

Related Vulnerabilities

PHP POST file upload buffer overflow vulnerabilities

PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-5899)

WebLogic Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2018-11040)

WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.15.42)

Joomla! Core 2.5.x Remote File Inclusion (2.5.4 - 2.5.25)

Severity

High

Classification

CWE-502 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Tags

Code Execution Missing Update