CVE-2025-43771 | Liferay Portal/DXP Notifications Widget First Name/Middle Name/Last Name/Other Reason cross site scripting

October 8, 2025 Yanac

A vulnerability marked as problematic has been reported in Liferay Portal and DXP. Affected by this issue is some unknown functionality of the component Notifications Widget. This manipulation of the argument First Name/Middle Name/Last Name/Other Reason causes cross site scripting.

This vulnerability is registered as CVE-2025-43771. Remote exploitation of the attack is possible. No exploit is available.VulDB Recent EntriesRead More