Secunia
Login
|
|
CVE Reference: CVE-2007-6173 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-6173 |
|
|
Description: Cross-site scripting (XSS) vulnerability in c/portal/login in Liferay Enterprise Portal 4.3.1 allows remote attackers to inject arbitrary web script or HTML via the emailAddress parameter in a Send New Password action, a different vector than CVE-2007-6055. NOTE: some of these details are obtained from third party information. |
|
|
CVE Status: Candidate |
|
|
References: ST 1019003 1022063 SREASON http://securityreason.com/securityalert/3404 SAID Secunia Advisory: SA27821 Secunia Advisory: SA34714 OSVDB 38891 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/484286/100/0/threaded BID 26606 |
|
| Return to the previous page. |
