CVE-2025-62261 | Liferay Portal/DXP Password Reset cleartext storage

October 28, 2025 Yanac

A vulnerability was found in Liferay Portal and DXP. It has been declared as problematic. The affected element is an unknown function of the component Password Reset Handler. Such manipulation leads to cleartext storage of sensitive information.

This vulnerability is uniquely identified as CVE-2025-62261. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-54970 | BAE SOCET GXP prior 4.6.0.2 Job Status Service improper authentication
CVE-2025-62778 | Frappe LMS up to 2.39.1 Quiz Form direct request (GHSA-8xvv-6v89-xxgx)