| CVE-2007-6055 (portal) |
| Cross-site scripting (XSS) vulnerability in c/portal/login in Liferay Portal 4.1.0 and 4.1.1 allows remote attackers to inject arbitrary web script or HTML via the login parameter. NOTE: this issue reportedly ... |
|
| CVE-2007-5973 (JPortal Web Portal) |
| SQL injection vulnerability in articles.php in JPortal 2.3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the topic parameter. More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-5973) |
|
| CVE-2007-5974 (JPortal Web Portal) |
| SQL injection vulnerability in mailer.php in JPortal 2 allows remote attackers to execute arbitrary SQL commands via the to parameter. More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-5974) |
|
| CVE-2007-5842 (Vortex Portal) |
| Multiple PHP remote file inclusion vulnerabilities in Vortex Portal 1.0.42 allow remote attackers to execute arbitrary PHP code via a URL in the cfgProgDir parameter to (1) admincp/auth/secure.php or (2) ... |
|
Members interested in portal
Communities featuring portal