Liferay Enterprise Portal User-Agent HTTP Header Cross Site Scripting Vulnerability

Bugtraq ID: 27547
Class: Input Validation Error
CVE: CVE-2008-0178
Remote: Yes
Local: No
Published: Jan 31 2008 12:00AM
Updated: Jan 31 2008 10:47PM
Credit: Tomasz Kuczynski is credited with the discovery of this vulnerability.
Vulnerable: Liferay Enterprise Portal 4.3.6
Not Vulnerable: Liferay Enterprise Portal 4.4
Liferay Enterprise Portal 4.3.7


 

Privacy Statement
Copyright 2010, SecurityFocus