Vulnerabilities > Liferay > Liferay Enterprise Portal > 3.6.1

DATE CVE VULNERABILITY TITLE RISK
2008-02-05 CVE-2008-0180 Cross-Site Scripting vulnerability in Liferay Enterprise Portal
Cross-site scripting (XSS) vulnerability in themes/_unstyled/templates/init.vm in Liferay Portal 4.3.6 allows remote authenticated users to inject arbitrary web script or HTML via the Greeting field in a User Profile.
network
liferay CWE-79
4.3
4.3