New User, Welcome!     Login

26th June

London DEFCON January meet - DC4420 - Wed 27th Jan 2010

   January 27th
   Febuary 24th
   March 31st
   April 28th - Infosec *gulp*
   May 26th
   June 30th
   July 28th (Social - goons will be in Vegas!)
   August 25th
   September 29th
   October 27th
   November 24th

PR07-02: XSS on Liferay Portal Enterprise 4.1.1 login page ('login' parameter)

Date Found: 6th March 2007

Vendor informed: 26th June 2007

Description:

Liferay Portal login page is vulnerable to 
Cross-Site Scripting within the "login" field processed by the "/c/portal/login" server-side script.

Consequences:


Copyright © 1995-2012 LinuxRocket.net. All rights reserved.

Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!