https://vulnerability.circl.lu/sightings/feed 2026-05-06T06:55:22.656878+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/082cda3b-ef86-46c3-b2c8-cf7a1e9f6677/export 2026-05-06T06:55:23.031050+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "082cda3b-ef86-46c3-b2c8-cf7a1e9f6677", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-42110", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14136", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-42110\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A Cross-site scripting (XSS) vulnerability in the Announcements module in Liferay Portal 7.1.0 through 7.4.2, and Liferay DXP 7.1 before fix pack 27, 7.2 before fix pack 17, and 7.3 before service pack 3 allows remote attackers to inject arbitrary web script or HTML.\n\ud83d\udccf Published: 2022-11-14T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-30T18:52:45.696Z\n\ud83d\udd17 References:\n1. https://portal.liferay.dev/learn/security/known-vulnerabilities/-/asset_publisher/HbL5mxmVrnXW/content/cve-2022-42110\n2. https://issues.liferay.com/browse/LPE-17403", "creation_timestamp": "2025-04-30T19:13:52.000000Z"} 2025-04-30T19:13:52+00:00