CVE-2025-43829 | Liferay Portal/DXP Commerce cross site scripting

October 8, 2025 Yanac

A vulnerability was found in Liferay Portal and DXP. It has been rated as problematic. This affects an unknown function of the component Commerce. Performing manipulation results in cross site scripting.

This vulnerability is identified as CVE-2025-43829. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More

CVE-2025-60828 | WukongCRM 9.0-JAVA fastjson /OaExamine/setOaExamine deserialization
CVE-2025-61183 | webreinvent vaahcms 2.3.1 UserBase.php storeAvatar cross site scripting (Issue 301)