Liferay Enterprise Portal User-Agent HTTP Header Cross Site Scripting Vulnerability
|
Bugtraq ID:
|
27547
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
CVE-2008-0178
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Jan 31 2008 12:00AM
|
|
Updated:
|
Jan 31 2008 10:47PM
|
|
Credit:
|
Tomasz Kuczynski is credited with the discovery of this vulnerability.
|
|
Vulnerable:
|
Liferay Enterprise Portal 4.3.6
|
|
|
|
Not Vulnerable:
|
Liferay Enterprise Portal 4.4
Liferay Enterprise Portal 4.3.7
|
|
