CVE-2022-42129

Posted on 2022년 11월 15일2022년 11월 15일 by admin

CVE-2022-42129

An Insecure direct object reference (IDOR) vulnerability in the Dynamic Data Mapping module in Liferay Portal 7.3.2 through 7.4.3.4, and Liferay DXP 7.3 before update 4, and 7.4 GA allows remote authenticated users to view and access form entries via the `formInstanceRecordId` parameter.

Source: CVE-2022-42129

답글 남기기 응답 취소