Full Disclosure

CVE-2014-8349 LIFERAY Portal Stored XSS

November 20, 2014 007admin Leave a comment

Posted by Garcia, Ariel (LATCO – Buenos Aires) on Nov 20

“[CVE-2014-8349] “

******************************************************************************

– Vendor Status: CONFIRMED

– Vendor Disclosure Date: October 17th 2014

– Public Disclosure Date: November 14th 2014

– Affected Vendor: LIFERAY – http://www.liferay.com/

– Affected System: Liferay Portal 6.2 EE SP8 and older versions

– Vulnerability Status: Fixed…

Leave a Reply Cancel reply

You must be logged in to post a comment.

Software and Security Information