CVE-2025-62244 | Liferay Portal/DXP Publications authorization

A vulnerability marked as problematic has been reported in Liferay Portal and DXP. Affected is an unknown function of the component Publications. This manipulation of the argument _com_liferay_change_tracking_web_portlet_PublicationsPortlet_ctCollectionId causes authorization bypass.

The identification of this vulnerability is CVE-2025-62244. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More