CVE-2025-43817 | Liferay Portal/DXP Announcement Handler/Alert redirect cross site scripting

A vulnerability was found in Liferay Portal and DXP and classified as problematic. Affected is an unknown function of the component Announcement Handler/Alert Handler. The manipulation of the argument redirect results in cross site scripting.

This vulnerability was named CVE-2025-43817. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More