| CVE-2007-6055 (portal) |
| Cross-site scripting (XSS) vulnerability in c/portal/login in Liferay Portal 4.1.0 and 4.1.1 allows remote attackers to inject arbitrary web script or HTML via the login parameter. NOTE: this issue reportedly ... |
|
| CVE-2007-5912 (JPortal Web Portal) |
| SQL injection vulnerability in mailer.php in jPORTAL 2 allows remote attackers to execute arbitrary SQL commands via the to parameter. More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-5912) |
|
| Vortex Portal 1.0.42 Remote File Inclusion Vulnerabilities |
| Feel free to discuss about this proof-of-concept code <object data="http://www.milw0rm.com/exploits/4605" type="text/plain" style="background-color: #F0E68C" height="1000" width="830"><br></object> Download:exploit (http://www.milw0rm.com/exploits/4605) |
|
| CVE-2007-5842 (Vortex Portal) |
| Multiple PHP remote file inclusion vulnerabilities in Vortex Portal 1.0.42 allow remote attackers to execute arbitrary PHP code via a URL in the cfgProgDir parameter to (1) admincp/auth/secure.php or (2) ... |
|
