CVE-2025-43822 | Liferay Portal/DXP cross site scripting

October 7, 2025 Yanac

A vulnerability described as problematic has been identified in Liferay Portal and DXP. Affected by this issue is some unknown functionality. The manipulation results in cross site scripting.

This vulnerability is known as CVE-2025-43822. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More

CVE-2025-3448 | B&R Industrial Automation Automation Runtime up to 6.3 cross site scripting
CVE-2025-61784 | hiyouga LLaMA-Factory up to 0.9.3 Chat API chat.py path traversal (GHSA-527m-2xhr-j27g)