csaf_certbund - wid-sec-w-2025-2232

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Liferay Portal ist eine Open-Source-Webplattform f\u00fcr Unternehmen, die ein Framework f\u00fcr die Erstellung und Verwaltung von webbasierten Anwendungen und Inhalten bietet.\r\nLiferay DXP (Digital Experience Platform) ist eine erweiterte und kommerziell unterst\u00fctzte Version von Liferay Portal, die zus\u00e4tzliche Funktionen und Dienste bietet.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Liferay Portal und Liferay DXP ausnutzen, um einen Cross-Site Scripting Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-2232 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2232.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-2232 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2232"
      },
      {
        "category": "external",
        "summary": "Liferay Security Advisory CVE-2025-43771 vom 2025-10-08",
        "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/cve-2025-43771"
      },
      {
        "category": "external",
        "summary": "Liferay Security Advisory CVE-2025-43821 vom 2025-10-08",
        "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/cve-2025-43821"
      },
      {
        "category": "external",
        "summary": "Liferay Security Advisory CVE-2025-43829 vom 2025-10-08",
        "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/cve-2025-43829"
      },
      {
        "category": "external",
        "summary": "Liferay Security Advisory CVE-2025-43830 vom 2025-10-08",
        "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/cve-2025-43830"
      }
    ],
    "source_lang": "en-US",
    "title": "Liferay Portal: Mehrere Schwachstellen erm\u00f6glichen Cross-Site Scripting",
    "tracking": {
      "current_release_date": "2025-10-08T22:00:00.000+00:00",
      "generator": {
        "date": "2025-10-09T07:24:49.758+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2025-2232",
      "initial_release_date": "2025-10-08T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-10-08T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c7.3 update 36",
                "product": {
                  "name": "Liferay DXP \u003c7.3 update 36",
                  "product_id": "T038532"
                }
              },
              {
                "category": "product_version",
                "name": "7.3 update 36",
                "product": {
                  "name": "Liferay DXP 7.3 update 36",
                  "product_id": "T038532-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:liferay:dxp:7.3_update_36"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c2023.Q4.6",
                "product": {
                  "name": "Liferay DXP \u003c2023.Q4.6",
                  "product_id": "T038533"
                }
              },
              {
                "category": "product_version",
                "name": "2023.Q4.6",
                "product": {
                  "name": "Liferay DXP 2023.Q4.6",
                  "product_id": "T038533-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:liferay:dxp:2023.q4.6"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c2023.Q3.9",
                "product": {
                  "name": "Liferay DXP \u003c2023.Q3.9",
                  "product_id": "T047433"
                }
              },
              {
                "category": "product_version",
                "name": "2023.Q3.9",
                "product": {
                  "name": "Liferay DXP 2023.Q3.9",
                  "product_id": "T047433-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:liferay:dxp:2023.q3.9"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c2024.Q1.1",
                "product": {
                  "name": "Liferay DXP \u003c2024.Q1.1",
                  "product_id": "T047459"
                }
              },
              {
                "category": "product_version",
                "name": "2024.Q1.1",
                "product": {
                  "name": "Liferay DXP 2024.Q1.1",
                  "product_id": "T047459-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:liferay:dxp:2024.q1.1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "DXP"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c7.4.3.112",
                "product": {
                  "name": "Liferay Portal \u003c7.4.3.112",
                  "product_id": "1675943"
                }
              },
              {
                "category": "product_version",
                "name": "7.4.3.112",
                "product": {
                  "name": "Liferay Portal 7.4.3.112",
                  "product_id": "1675943-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:liferay:liferay_portal:7.4.3.112"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Portal"
          }
        ],
        "category": "vendor",
        "name": "Liferay"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-43771",
      "product_status": {
        "known_affected": [
          "1675943",
          "T047459",
          "T038533"
        ]
      },
      "release_date": "2025-10-08T22:00:00.000+00:00",
      "title": "CVE-2025-43771"
    },
    {
      "cve": "CVE-2025-43821",
      "product_status": {
        "known_affected": [
          "1675943",
          "T047459",
          "T038533",
          "T047433"
        ]
      },
      "release_date": "2025-10-08T22:00:00.000+00:00",
      "title": "CVE-2025-43821"
    },
    {
      "cve": "CVE-2025-43829",
      "product_status": {
        "known_affected": [
          "1675943",
          "T047459",
          "T038533",
          "T038532",
          "T047433"
        ]
      },
      "release_date": "2025-10-08T22:00:00.000+00:00",
      "title": "CVE-2025-43829"
    },
    {
      "cve": "CVE-2025-43830",
      "product_status": {
        "known_affected": [
          "1675943",
          "T047459",
          "T038533",
          "T038532",
          "T047433"
        ]
      },
      "release_date": "2025-10-08T22:00:00.000+00:00",
      "title": "CVE-2025-43830"
    }
  ]
}

CVE-2025-43771 (GCVE-0-2025-43771)

Vulnerability from cvelistv5 – Published: 2025-10-08 14:13 – Updated: 2025-10-08 14:30

Summary

Multiple cross-site scripting (XSS) vulnerabilities in the Notifications widget in Liferay Portal 7.4.3.102 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.5 and 2023.Q3.1 through 2023.Q3.10 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into (1) a user’s “First Name” text field, (2) a user’s “Middle Name” text field, (3) a user’s “Last Name” text field, (4) the “Other Reason” text field when flagging content, or (5) the name of the flagged content.

Severity ?

4.8 (Medium)


                        
                          CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

CWE

CWE-79 - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')

Assigner

Liferay

References

URL

Tags

Impacted products

Vendor

Product

Version

Affected: 7.4.3.102 , ≤ 7.4.3.111 (maven)

Affected: 2023.Q3.1 , ≤ 2023.Q3.10 (maven)
Affected: 2023.Q4.0 , ≤ 2023.Q4.5 (maven)

Credits

foobar7

Show details on NVD website

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-43771",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-10-08T14:30:19.485740Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-08T14:30:29.074Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Portal",
          "vendor": "Liferay",
          "versions": [
            {
              "lessThanOrEqual": "7.4.3.111",
              "status": "affected",
              "version": "7.4.3.102",
              "versionType": "maven"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "DXP",
          "vendor": "Liferay",
          "versions": [
            {
              "lessThanOrEqual": "2023.Q3.10",
              "status": "affected",
              "version": "2023.Q3.1",
              "versionType": "maven"
            },
            {
              "lessThanOrEqual": "2023.Q4.5",
              "status": "affected",
              "version": "2023.Q4.0",
              "versionType": "maven"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "reporter",
          "value": "foobar7"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Multiple cross-site scripting (XSS) vulnerabilities in the Notifications widget in Liferay Portal 7.4.3.102 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.5 and 2023.Q3.1 through 2023.Q3.10 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into (1) a user\u2019s \u201cFirst Name\u201d text field, (2) a user\u2019s \u201cMiddle Name\u201d text field, (3) a user\u2019s \u201cLast Name\u201d text field, (4) the \u201cOther Reason\u201d text field when flagging content, or (5) the name of the flagged content."
            }
          ],
          "value": "Multiple cross-site scripting (XSS) vulnerabilities in the Notifications widget in Liferay Portal 7.4.3.102 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.5 and 2023.Q3.1 through 2023.Q3.10 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into (1) a user\u2019s \u201cFirst Name\u201d text field, (2) a user\u2019s \u201cMiddle Name\u201d text field, (3) a user\u2019s \u201cLast Name\u201d text field, (4) the \u201cOther Reason\u201d text field when flagging content, or (5) the name of the flagged content."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NOT_DEFINED",
            "Recovery": "NOT_DEFINED",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "NETWORK",
            "baseScore": 4.8,
            "baseSeverity": "MEDIUM",
            "privilegesRequired": "LOW",
            "providerUrgency": "NOT_DEFINED",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "ACTIVE",
            "valueDensity": "NOT_DEFINED",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "NONE",
            "vulnConfidentialityImpact": "LOW",
            "vulnIntegrityImpact": "LOW",
            "vulnerabilityResponseEffort": "NOT_DEFINED"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-79",
              "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or \u0027Cross-site Scripting\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-10-08T14:13:40.235Z",
        "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "shortName": "Liferay"
      },
      "references": [
        {
          "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-43771"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
    "assignerShortName": "Liferay",
    "cveId": "CVE-2025-43771",
    "datePublished": "2025-10-08T14:13:40.235Z",
    "dateReserved": "2025-04-17T10:55:28.237Z",
    "dateUpdated": "2025-10-08T14:30:29.074Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2025-43821 (GCVE-0-2025-43821)

Vulnerability from cvelistv5 – Published: 2025-10-08 12:53 – Updated: 2025-10-08 13:08

Summary

Cross-site scripting (XSS) vulnerability in the Commerce Product Comparison Table widget in Liferay Portal 7.4.0 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.8, and 7.4 GA through update 92 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a Commerce Product's Name text field.

Severity ?

4.8 (Medium)


                        
                          CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

CWE

CWE-79 - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')

Assigner

Liferay

References

URL

Tags

Impacted products

Vendor

Product

Version

Affected: 7.4.0 , ≤ 7.4.3.111 (maven)

Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
Affected: 2023.Q3.1 , ≤ 2023.Q3.8 (maven)
Affected: 2023.Q4.0 , ≤ 2023.Q4.5 (maven)

Credits

foobar7

Show details on NVD website

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-43821",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-10-08T13:08:44.230119Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-08T13:08:50.517Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Portal",
          "vendor": "Liferay",
          "versions": [
            {
              "lessThanOrEqual": "7.4.3.111",
              "status": "affected",
              "version": "7.4.0",
              "versionType": "maven"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "DXP",
          "vendor": "Liferay",
          "versions": [
            {
              "lessThanOrEqual": "7.4.13-u92",
              "status": "affected",
              "version": "7.4.13",
              "versionType": "maven"
            },
            {
              "lessThanOrEqual": "2023.Q3.8",
              "status": "affected",
              "version": "2023.Q3.1",
              "versionType": "maven"
            },
            {
              "lessThanOrEqual": "2023.Q4.5",
              "status": "affected",
              "version": "2023.Q4.0",
              "versionType": "maven"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "reporter",
          "value": "foobar7"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Cross-site scripting (XSS) vulnerability in the Commerce Product Comparison Table widget in Liferay Portal 7.4.0 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.8, and 7.4 GA through update 92 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a Commerce Product\u0027s Name text field."
            }
          ],
          "value": "Cross-site scripting (XSS) vulnerability in the Commerce Product Comparison Table widget in Liferay Portal 7.4.0 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.8, and 7.4 GA through update 92 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a Commerce Product\u0027s Name text field."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NOT_DEFINED",
            "Recovery": "NOT_DEFINED",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "NETWORK",
            "baseScore": 4.8,
            "baseSeverity": "MEDIUM",
            "privilegesRequired": "LOW",
            "providerUrgency": "NOT_DEFINED",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "ACTIVE",
            "valueDensity": "NOT_DEFINED",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "NONE",
            "vulnConfidentialityImpact": "LOW",
            "vulnIntegrityImpact": "LOW",
            "vulnerabilityResponseEffort": "NOT_DEFINED"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-79",
              "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or \u0027Cross-site Scripting\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-10-08T12:53:20.184Z",
        "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "shortName": "Liferay"
      },
      "references": [
        {
          "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-43821"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
    "assignerShortName": "Liferay",
    "cveId": "CVE-2025-43821",
    "datePublished": "2025-10-08T12:53:20.184Z",
    "dateReserved": "2025-04-17T10:55:37.245Z",
    "dateUpdated": "2025-10-08T13:08:50.517Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2025-43830 (GCVE-0-2025-43830)

Vulnerability from cvelistv5 – Published: 2025-10-08 13:11 – Updated: 2025-10-08 13:44

Summary

Stored cross-site scripting (XSS) vulnerability in Forms in Liferay Portal 7.3.2 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.8, 7.4 GA through update 92, and 7.3 GA through update 35 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a form with a rich text type field.

Severity ?

5.1 (Medium)


                        
                          CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

CWE

CWE-79 - Cross-site Scripting

Assigner

Liferay

References

URL

Tags

Impacted products

Vendor

Product

Version

Affected: 7.3.2 , ≤ 7.4.3.111 (maven)

Affected: 7.3.10 , ≤ 7.3.10-u35 (maven)
Affected: 7.4.13 , ≤ 7.4.13-u92 (maven)
Affected: 2023.Q3.1 , ≤ 2023.Q3.8 (maven)
Affected: 2023.Q4.0 , ≤ 2023.Q4.5 (maven)

Credits

foobar7

Show details on NVD website

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-43830",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-10-08T13:36:35.391464Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-08T13:37:20.549Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Portal",
          "vendor": "Liferay",
          "versions": [
            {
              "lessThanOrEqual": "7.4.3.111",
              "status": "affected",
              "version": "7.3.2",
              "versionType": "maven"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "DXP",
          "vendor": "Liferay",
          "versions": [
            {
              "lessThanOrEqual": "7.3.10-u35",
              "status": "affected",
              "version": "7.3.10",
              "versionType": "maven"
            },
            {
              "lessThanOrEqual": "7.4.13-u92",
              "status": "affected",
              "version": "7.4.13",
              "versionType": "maven"
            },
            {
              "lessThanOrEqual": "2023.Q3.8",
              "status": "affected",
              "version": "2023.Q3.1",
              "versionType": "maven"
            },
            {
              "lessThanOrEqual": "2023.Q4.5",
              "status": "affected",
              "version": "2023.Q4.0",
              "versionType": "maven"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "reporter",
          "value": "foobar7"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Stored cross-site scripting (XSS) vulnerability in Forms in Liferay Portal 7.3.2 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.8, 7.4 GA through update 92, and 7.3 GA through update 35 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a form with a rich text type field."
            }
          ],
          "value": "Stored cross-site scripting (XSS) vulnerability in Forms in Liferay Portal 7.3.2 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.8, 7.4 GA through update 92, and 7.3 GA through update 35 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a form with a rich text type field."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NOT_DEFINED",
            "Recovery": "NOT_DEFINED",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "NETWORK",
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "privilegesRequired": "NONE",
            "providerUrgency": "NOT_DEFINED",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "ACTIVE",
            "valueDensity": "NOT_DEFINED",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "NONE",
            "vulnConfidentialityImpact": "LOW",
            "vulnIntegrityImpact": "LOW",
            "vulnerabilityResponseEffort": "NOT_DEFINED"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-79",
              "description": "CWE-79: Cross-site Scripting",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-10-08T13:44:13.548Z",
        "orgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
        "shortName": "Liferay"
      },
      "references": [
        {
          "url": "https://liferay.dev/portal/security/known-vulnerabilities/-/asset_publisher/jekt/content/CVE-2025-43830"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8b54e794-c6f0-462e-9faa-c1001a673ac3",
    "assignerShortName": "Liferay",
    "cveId": "CVE-2025-43830",
    "datePublished": "2025-10-08T13:11:37.535Z",
    "dateReserved": "2025-04-17T10:55:37.246Z",
    "dateUpdated": "2025-10-08T13:44:13.548Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2025-43829 (GCVE-0-2025-43829)

Vulnerability from cvelistv5 – Published: 2025-10-08 13:55 – Updated: 2025-10-08 14:33

Summary

Stored cross-site scripting (XSS) vulnerability in diagram type products in Commerce in Liferay Portal 7.4.3.18 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.8, and 7.4 update 18 through update 92 allows remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a SVG file.

Severity ?

4.8 (Medium)


                        
                          CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

CWE

CWE-79 - Cross-site Scripting

Assigner

Liferay

References

URL

Tags

Impacted products

Vendor

Product

Version

Affected: 7.4.3.18 , ≤ 7.4.3.111 (maven)

Affected: 7.4.13-u18 , ≤ 7.4.13-u92 (maven)
Affected: 2023.Q3.1 , ≤ 2023.Q3.8 (maven)
Affected: 2023.Q4.0 , ≤ 2023.Q4.5 (maven)

Credits

foobar7

Show details on NVD website