CVE-2023-33940

Posted on 2023년 5월 24일2023년 5월 25일 by admin

CVE-2023-33940

Cross-site scripting (XSS) vulnerability in IFrame type Remote Apps in Liferay Portal 7.4.0 through 7.4.3.30, and Liferay DXP 7.4 before update 31 allows remote attackers to inject arbitrary web script or HTML via the Remote App’s IFrame URL.

Source: CVE-2023-33940

답글 남기기 응답 취소