CVE-2025-43813 | Liferay Portal/DXP ComboServlet path traversal

September 30, 2025 Yanac

A vulnerability marked as critical has been reported in Liferay Portal and DXP. Affected by this vulnerability is an unknown functionality of the component ComboServlet. Performing manipulation results in path traversal.

This vulnerability is reported as CVE-2025-43813. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-61584 | serverless-dns up to 0.1.30 command injection
CVE-2025-59941 | filecoin-project go-f3 up to 0.8.8 Message authentication bypass (GHSA-7pq9-rf9p-wcrf)