CVE-2022-42119

Source
https://nvd.nist.gov/vuln/detail/CVE-2022-42119
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-42119.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2022-42119
Published
2022-11-15T01:15:12Z
Modified
2025-01-08T10:20:39.931864Z
Severity
  • 5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

Certain Liferay products are vulnerable to Cross Site Scripting (XSS) via the Commerce module. This affects Liferay Portal 7.3.5 through 7.4.2 and Liferay DXP 7.3 before update 8.

References

Affected packages

Git / github.com/liferay/liferay-portal

Affected versions

7.*

7.3.5-ga6