CVE-2025-43809 | Liferay Portal/DXP Registration orderUuid cross-site request forgery

A vulnerability categorized as problematic has been discovered in Liferay Portal and DXP. This affects an unknown function of the component Registration Handler. Executing manipulation of the argument orderUuid can lead to cross-site request forgery.

This vulnerability is tracked as CVE-2025-43809. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More