Vulnerabilities > Liferay > Liferay Portal > 7.2.1

DATE CVE VULNERABILITY TITLE RISK
2020-01-28 CVE-2020-7934 Cross-site Scripting vulnerability in Liferay Portal
In LifeRay Portal CE 7.1.0 through 7.2.1 GA2, the First Name, Middle Name, and Last Name fields for user accounts in MyAccountPortlet are all vulnerable to a persistent XSS issue.
network
liferay CWE-79
3.5
3.5