← Back to CVE List

CVE-2024-11993

Published: 2024-12-17T21:15Z
Last Modified: 2025-03-28T20:15Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Reflected cross-site scripting (XSS) vulnerability in Liferay Portal 7.4.0 through 7.4.3.38, and Liferay DXP 7.4 GA through update 38 allows remote attackers to execute arbitrary web script or HTML via Dispatch name field > MITRE Terms of Use apply – see LICENSE‑MITRE.txt