CVE-2011-1503 in Liferayinfo

Zusammenfassung

von MITRE

The XSL Content portlet in Liferay Portal Community Edition (CE) 5.x and 6.x before 6.0.6 GA, when Apache Tomcat or Oracle GlassFish is used, allows remote authenticated users to read arbitrary (1) XSL and (2) XML files via a file:/// URL.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

21.03.2011

Veröffentlichung

07.05.2011

Moderieren

akzeptiert

Eintrag

VDB-57375

CPE

bereit

CWE

CWE-200 (bestätigt)

Exploit

Download

CVSS

3.5 (NVD)

EPSS

0.01397

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-1503
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-1503
CVE Details	https://www.cvedetails.com/cve/CVE-2011-1503/

◂ Zurück Übersicht Weiter ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!