Liferay Portal Forgot-Password Cross Site Scripting Vulnerability

Bugtraq ID: 26606
Class: Input Validation Error
CVE: CVE-2007-6173
CVE-2009-1294
Remote: Yes
Local: No
Published: Nov 27 2007 12:00AM
Updated: Apr 16 2009 06:46PM
Credit: Joshua Morin is credited with the discovery of this vulnerability.
Vulnerable: Novell Teaming + Conferencing 0
Novell Teaming 1.0 SP3
Novell Teaming 1.0 SP2
Novell Teaming 1.0 SP1
Novell Teaming 1.0
Liferay Enterprise Portal 4.3.1
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus