Liferay Portal Login Script Cross-Site Scripting Vulnerability

Bugtraq ID: 26470
Class: Input Validation Error
CVE: CVE-2007-6055
CVE-2009-1294
Remote: Yes
Local: No
Published: Nov 16 2007 12:00AM
Updated: Apr 16 2009 06:36PM
Credit: Adrian Pastor of ProcheckUp is credited with the discovery of this vulnerability.
Vulnerable: Novell Teaming + Conferencing 0
Novell Teaming 1.0 SP3
Novell Teaming 1.0 SP2
Novell Teaming 1.0 SP1
Novell Teaming 1.0
Liferay Enterprise Portal 4.1.1
Liferay Enterprise Portal 4.1
Not Vulnerable: Liferay Enterprise Portal 4.1.3


 

Privacy Statement
Copyright 2010, SecurityFocus