Vulnerability Description
Liferay CMS Portal version 7.1.3 and 7.2.1 have a blind persistent cross-site scripting (XSS) vulnerability in the user name parameter to Calendar. An attacker can insert the malicious payload on the username, lastname or surname fields of its own profile, and the malicious payload will be injected and reflected in the calendar of the user who submitted the payload. An attacker could escalate its privileges in case an admin visits the calendar that injected the payload.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Liferay | Liferay Portal | 7.1.3 |
Related Weaknesses (CWE)
References
- https://github.com/community-security-team/liferay-portal/compare/7.1.3-ga4...7.PatchThird Party Advisory
- https://github.com/community-security-team/liferay-portal/compare/7.2.1-ga2...7.PatchThird Party Advisory
- https://portal.liferay.dev/learn/security/known-vulnerabilities/-/asset_publishePatchVendor Advisory
- https://github.com/community-security-team/liferay-portal/compare/7.1.3-ga4...7.PatchThird Party Advisory
- https://github.com/community-security-team/liferay-portal/compare/7.2.1-ga2...7.PatchThird Party Advisory
- https://portal.liferay.dev/learn/security/known-vulnerabilities/-/asset_publishePatchVendor Advisory
FAQ
What is CVE-2020-25476?
CVE-2020-25476 is a vulnerability with a CVSS score of 6.1 (MEDIUM). Liferay CMS Portal version 7.1.3 and 7.2.1 have a blind persistent cross-site scripting (XSS) vulnerability in the user name parameter to Calendar. An attacker can insert the malicious payload on the ...
How severe is CVE-2020-25476?
CVE-2020-25476 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-25476?
Check the references section above for vendor advisories and patch information. Affected products include: Liferay Liferay Portal.