CVE-2025-43802 | Liferay Portal/DXP API Endpoint externalReferenceCode cross site scripting

A vulnerability categorized as problematic has been discovered in Liferay Portal and DXP. This affects an unknown function of the component API Endpoint. Such manipulation of the argument externalReferenceCode leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-43802. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More