com.liferay.portal:com.liferay.portal.impl 3.50.7 vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the com.liferay.portal:com.liferay.portal.impl package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
C Cross-site Scripting (XSS) com.liferay.portal:com.liferay.portal.impl is a package part of Liferay. Affected versions of this package are vulnerable to Cross-site Scripting (XSS) via the `HtmlUtil.escapeJsLink` function. An attacker can inject arbitrary web script or HTML by crafting `javascript:` style links. How to fix Cross-site Scripting (XSS)? Upgrade `com.liferay.portal:com.liferay.portal.impl` to version 7.8.0 or higher.	[,7.8.0)
M Cross-site Request Forgery (CSRF) com.liferay.portal:com.liferay.portal.impl is a package part of Liferay. Affected versions of this package are vulnerable to Cross-site Request Forgery (CSRF) due to insufficient protection on the terms of use page. An attacker can trick a user into accepting the site's terms of use by convincing them to visit a malicious page. How to fix Cross-site Request Forgery (CSRF)? Upgrade `com.liferay.portal:com.liferay.portal.impl` to version 5.25.0 or higher.	[,5.25.0)
M Observable Discrepancy com.liferay.portal:com.liferay.portal.impl is a package part of Liferay. Affected versions of this package are vulnerable to Observable Discrepancy due to the handling of different responses based on site existence or user permissions. An attacker can discover the existence of sites by enumerating URLs. Note: This is only exploitable if `locale.prepend.friendly.url.style=2` and if a custom 404 page is used. How to fix Observable Discrepancy? Upgrade `com.liferay.portal:com.liferay.portal.impl` to version 7.8.0 or higher.	[,7.8.0)
M Insecure Default Initialization of Resource com.liferay.portal:com.liferay.portal.impl is a package part of Liferay. Affected versions of this package are vulnerable to Insecure Default Initialization of Resource such that the default configuration does not require users to verify their email addresses, which allows remote attackers to create accounts using fake email addresses or email addresses which they don't control. The portal property `company.security.strangers.verify` should be set to true. How to fix Insecure Default Initialization of Resource? Upgrade `com.liferay.portal:com.liferay.portal.impl` to version 5.5.4 or higher.	[,5.5.4)
M Arbitrary File Write via Archive Extraction (Zip Slip) com.liferay.portal:com.liferay.portal.impl is a package part of Liferay. Affected versions of this package are vulnerable to Arbitrary File Write via Archive Extraction (Zip Slip) in `FileUtil.unzip`, which allows attackers to create or overwrite existing files on the filesystem via the deployment of a malicious plugin/module. How to fix Arbitrary File Write via Archive Extraction (Zip Slip)? Upgrade `com.liferay.portal:com.liferay.portal.impl` to version 47.1.0 or higher.	[,47.1.0)
M Open Redirect com.liferay.portal:com.liferay.portal.impl is a package part of Liferay. Affected versions of this package are vulnerable to Open Redirect via the `HtmlUtil.escapeRedirect`, by using multiple forward slashes, which allows remote attackers to redirect users to arbitrary external URLs via the 'redirect`parameter, the`FORWARD_URL`parameter, and others parameters that rely on`HtmlUtil.escapeRedirect`. How to fix Open Redirect? Upgrade `com.liferay.portal:com.liferay.portal.impl` to version 7.9.0 or higher.	[,7.9.0)
M Access Restriction Bypass com.liferay.portal:com.liferay.portal.impl is a package part of Liferay. Affected versions of this package are vulnerable to Access Restriction Bypass by not properly checking user permission when accessing a list of sites/groups, which allows remote authenticated users to view sites/groups via the user's site membership assignment UI. How to fix Access Restriction Bypass? Upgrade `com.liferay.portal:com.liferay.portal.impl` to version 6.05 or higher.	[,6.05)
M Information Exposure com.liferay.portal:com.liferay.portal.impl is a package part of Liferay. Affected versions of this package are vulnerable to Information Exposure. User's passwords are stored in the database if workflow is enabled for new users. This allows attackers with access to the database to obtain the user's unencrypted password. How to fix Information Exposure? Upgrade `com.liferay.portal:com.liferay.portal.impl` to version 5.11.0 or higher.	[,5.11.0)
M Improper Validation com.liferay.portal:com.liferay.portal.impl is a package part of Liferay. Affected versions of this package are vulnerable to Improper Validation. Password reset tokens are still valid after a user changes their password, which allows remote attackers to change the user’s password via the old password reset token. How to fix Improper Validation? Upgrade `com.liferay.portal:com.liferay.portal.impl` to version 5.7.3 or higher.	[,5.7.3)
M Information Exposure com.liferay.portal:com.liferay.portal.impl is a package part of Liferay. Affected versions of this package are vulnerable to Information Exposure. It allows remote attackers to enumerate user email addresses via the forgot password functionality. The `portal.property` `login.secure.forgot.password` should be defaulted to `true`. How to fix Information Exposure? Upgrade `com.liferay.portal:com.liferay.portal.impl` to version 5.11.0 or higher.	[,5.11.0)
M Improper Authorization com.liferay.portal:com.liferay.portal.impl is a package part of Liferay. Affected versions of this package are vulnerable to Improper Authorization. It does not properly check permission of pages, which allows remote authenticated users without view permission of a page to view the page via a site's page administration. How to fix Improper Authorization? Upgrade `com.liferay.portal:com.liferay.portal.impl` to version 5.9.0 or higher.	[,5.9.0)
M Privilege Escalation com.liferay.portal:com.liferay.portal.impl is a package part of Liferay. Affected versions of this package are vulnerable to Privilege Escalation. It allows remote authenticated users with permission to update or edit users to take over a company administrator user account by editing the company administrator user. How to fix Privilege Escalation? Upgrade `com.liferay.portal:com.liferay.portal.impl` to version 5.16.4 or higher.	[,5.16.4)
M Arbitrary File Access com.liferay.portal:com.liferay.portal.impl is a package part of Liferay. Affected versions of this package are vulnerable to Arbitrary File Access. The property `portlet.resource.id.banned.paths.regexp` can be bypassed with doubled encoded URLs, which allows remote attackers to access restricted `portlet` resources (e.g., files within `/META-INF` and /`WEB-IN`). How to fix Arbitrary File Access? Upgrade `com.liferay.portal:com.liferay.portal.impl` to version 7.4.0, 7.1.3 or higher.	[7.2.0,7.4.0)[0,7.1.3)

Vulnerability

Vulnerable Version

Cross-site Scripting (XSS)

com.liferay.portal:com.liferay.portal.impl is a package part of Liferay.

Affected versions of this package are vulnerable to Cross-site Scripting (XSS) via the HtmlUtil.escapeJsLink function. An attacker can inject arbitrary web script or HTML by crafting javascript: style links.

How to fix Cross-site Scripting (XSS)?

Upgrade com.liferay.portal:com.liferay.portal.impl to version 7.8.0 or higher.

[,7.8.0)

Cross-site Request Forgery (CSRF)

com.liferay.portal:com.liferay.portal.impl is a package part of Liferay.

Affected versions of this package are vulnerable to Cross-site Request Forgery (CSRF) due to insufficient protection on the terms of use page. An attacker can trick a user into accepting the site's terms of use by convincing them to visit a malicious page.

How to fix Cross-site Request Forgery (CSRF)?

Upgrade com.liferay.portal:com.liferay.portal.impl to version 5.25.0 or higher.

[,5.25.0)

Observable Discrepancy

com.liferay.portal:com.liferay.portal.impl is a package part of Liferay.

Affected versions of this package are vulnerable to Observable Discrepancy due to the handling of different responses based on site existence or user permissions. An attacker can discover the existence of sites by enumerating URLs.

Note:

This is only exploitable if locale.prepend.friendly.url.style=2 and if a custom 404 page is used.

How to fix Observable Discrepancy?

Upgrade com.liferay.portal:com.liferay.portal.impl to version 7.8.0 or higher.

[,7.8.0)

Insecure Default Initialization of Resource

com.liferay.portal:com.liferay.portal.impl is a package part of Liferay.

Affected versions of this package are vulnerable to Insecure Default Initialization of Resource such that the default configuration does not require users to verify their email addresses, which allows remote attackers to create accounts using fake email addresses or email addresses which they don't control. The portal property company.security.strangers.verify should be set to true.

How to fix Insecure Default Initialization of Resource?

Upgrade com.liferay.portal:com.liferay.portal.impl to version 5.5.4 or higher.

[,5.5.4)

Arbitrary File Write via Archive Extraction (Zip Slip)

com.liferay.portal:com.liferay.portal.impl is a package part of Liferay.

Affected versions of this package are vulnerable to Arbitrary File Write via Archive Extraction (Zip Slip) in FileUtil.unzip, which allows attackers to create or overwrite existing files on the filesystem via the deployment of a malicious plugin/module.

How to fix Arbitrary File Write via Archive Extraction (Zip Slip)?

Upgrade com.liferay.portal:com.liferay.portal.impl to version 47.1.0 or higher.

[,47.1.0)

Open Redirect

com.liferay.portal:com.liferay.portal.impl is a package part of Liferay.

Affected versions of this package are vulnerable to Open Redirect via the HtmlUtil.escapeRedirect, by using multiple forward slashes, which allows remote attackers to redirect users to arbitrary external URLs via the 'redirectparameter, theFORWARD_URLparameter, and others parameters that rely onHtmlUtil.escapeRedirect`.

How to fix Open Redirect?

Upgrade com.liferay.portal:com.liferay.portal.impl to version 7.9.0 or higher.

[,7.9.0)

Access Restriction Bypass

com.liferay.portal:com.liferay.portal.impl is a package part of Liferay.

Affected versions of this package are vulnerable to Access Restriction Bypass by not properly checking user permission when accessing a list of sites/groups, which allows remote authenticated users to view sites/groups via the user's site membership assignment UI.

How to fix Access Restriction Bypass?

Upgrade com.liferay.portal:com.liferay.portal.impl to version 6.05 or higher.

[,6.05)

Information Exposure

com.liferay.portal:com.liferay.portal.impl is a package part of Liferay.

Affected versions of this package are vulnerable to Information Exposure. User's passwords are stored in the database if workflow is enabled for new users. This allows attackers with access to the database to obtain the user's unencrypted password.

How to fix Information Exposure?

Upgrade com.liferay.portal:com.liferay.portal.impl to version 5.11.0 or higher.

[,5.11.0)

Improper Validation

com.liferay.portal:com.liferay.portal.impl is a package part of Liferay.

Affected versions of this package are vulnerable to Improper Validation. Password reset tokens are still valid after a user changes their password, which allows remote attackers to change the user’s password via the old password reset token.

How to fix Improper Validation?

Upgrade com.liferay.portal:com.liferay.portal.impl to version 5.7.3 or higher.

[,5.7.3)

Information Exposure

com.liferay.portal:com.liferay.portal.impl is a package part of Liferay.

Affected versions of this package are vulnerable to Information Exposure. It allows remote attackers to enumerate user email addresses via the forgot password functionality. The portal.property login.secure.forgot.password should be defaulted to true.

How to fix Information Exposure?

Upgrade com.liferay.portal:com.liferay.portal.impl to version 5.11.0 or higher.

[,5.11.0)

Improper Authorization

com.liferay.portal:com.liferay.portal.impl is a package part of Liferay.

Affected versions of this package are vulnerable to Improper Authorization. It does not properly check permission of pages, which allows remote authenticated users without view permission of a page to view the page via a site's page administration.

How to fix Improper Authorization?

Upgrade com.liferay.portal:com.liferay.portal.impl to version 5.9.0 or higher.

[,5.9.0)

Privilege Escalation

com.liferay.portal:com.liferay.portal.impl is a package part of Liferay.

Affected versions of this package are vulnerable to Privilege Escalation. It allows remote authenticated users with permission to update or edit users to take over a company administrator user account by editing the company administrator user.

How to fix Privilege Escalation?

Upgrade com.liferay.portal:com.liferay.portal.impl to version 5.16.4 or higher.

[,5.16.4)

Arbitrary File Access

com.liferay.portal:com.liferay.portal.impl is a package part of Liferay.

Affected versions of this package are vulnerable to Arbitrary File Access. The property portlet.resource.id.banned.paths.regexp can be bypassed with doubled encoded URLs, which allows remote attackers to access restricted portlet resources (e.g., files within /META-INF and /WEB-IN).

How to fix Arbitrary File Access?

Upgrade com.liferay.portal:com.liferay.portal.impl to version 7.4.0, 7.1.3 or higher.

[7.2.0,7.4.0)[0,7.1.3)

com.liferay.portal:com.liferay.portal.impl@3.50.7 vulnerabilities

latest version

latest non vulnerable version

first published

latest version published

licenses detected

package manager

Direct Vulnerabilities

How to fix?