CVE-2025-62259 | Liferay Portal/DXP API authorization

October 28, 2025 Yanac

A vulnerability was found in Liferay Portal and DXP. It has been classified as critical. This affects an unknown part of the component API. The manipulation leads to incorrect authorization.

This vulnerability is uniquely identified as CVE-2025-62259. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-27225 | Rocket TRUfusion Enterprise up to 7.10.4.0 Endpoint internal_admin_contact_login.jsp information disclosure
CVE-2025-62260 | Liferay Portal/DXP Headless API resource consumption