Skip to content

Commit e852d26

Browse files
advisory-database[bot]advisory-database[bot]
committed
1 parent a569388 commit e852d26

File tree

1 file changed

+42
-6
lines changed

1 file changed

+42
-6
lines changed

advisories/unreviewed/2022/05/GHSA-rpj9-pc39-h8j8/GHSA-rpj9-pc39-h8j8.json renamed to advisories/github-reviewed/2022/05/GHSA-rpj9-pc39-h8j8/GHSA-rpj9-pc39-h8j8.json

Lines changed: 42 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -1,19 +1,53 @@
11
{
22
"schema_version": "1.4.0",
33
"id": "GHSA-rpj9-pc39-h8j8",
4-
"modified": "2022-05-13T01:25:11Z",
4+
"modified": "2025-07-15T19:23:37Z",
55
"published": "2022-05-13T01:25:11Z",
66
"aliases": [
77
"CVE-2011-1571"
88
],
9+
"summary": "Liferay Portal vulnerable to arbitrary command injection",
910
"details": "Unspecified vulnerability in the XSL Content portlet in Liferay Portal Community Edition (CE) 5.x and 6.x before 6.0.6 GA, when Apache Tomcat is used, allows remote attackers to execute arbitrary commands via unknown vectors.",
10-
"severity": [],
11-
"affected": [],
11+
"severity": [
12+
{
13+
"type": "CVSS_V4",
14+
"score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"
15+
}
16+
],
17+
"affected": [
18+
{
19+
"package": {
20+
"ecosystem": "Maven",
21+
"name": "com.liferay.portal:portal-service"
22+
},
23+
"ranges": [
24+
{
25+
"type": "ECOSYSTEM",
26+
"events": [
27+
{
28+
"introduced": "5.0.0"
29+
},
30+
{
31+
"fixed": "6.0.6-ga"
32+
}
33+
]
34+
}
35+
]
36+
}
37+
],
1238
"references": [
1339
{
1440
"type": "ADVISORY",
1541
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1571"
1642
},
43+
{
44+
"type": "WEB",
45+
"url": "https://github.com/liferay/liferay-portal/commit/55502ca16019e1ea1a581ee87f4f20cde638c825"
46+
},
47+
{
48+
"type": "PACKAGE",
49+
"url": "https://github.com/liferay/liferay-portal"
50+
},
1751
{
1852
"type": "WEB",
1953
"url": "http://issues.liferay.com/browse/LPS-14726"
@@ -36,10 +70,12 @@
3670
}
3771
],
3872
"database_specific": {
39-
"cwe_ids": [],
73+
"cwe_ids": [
74+
"CWE-77"
75+
],
4076
"severity": "MODERATE",
41-
"github_reviewed": false,
42-
"github_reviewed_at": null,
77+
"github_reviewed": true,
78+
"github_reviewed_at": "2025-07-15T19:23:37Z",
4379
"nvd_published_at": "2011-05-07T19:55:00Z"
4480
}
4581
}

0 commit comments

Comments
 (0)