VulnerableCode Package Details - pkg:maven/com.liferay.portal/release.portal.bom@7.4.3.96

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:maven/com.liferay.portal/release.portal.bom@7.4.3.96

purl	pkg:maven/com.liferay.portal/release.portal.bom@7.4.3.96

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-uth2-a9jw-p7fz	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Reflected cross-site scripting (XSS) vulnerability on a content page’s edit page in Liferay Portal 7.4.3.94 through 7.4.3.95 allows remote attackers to inject arbitrary web script or HTML via the `p_l_back_url_title` parameter.	CVE-2023-47797 GHSA-v32m-pf9q-p3xg

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-05-30T21:02:33.898257+00:00	GitLab Importer	Fixing	VCID-uth2-a9jw-p7fz	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/com.liferay.portal/release.portal.bom/CVE-2023-47797.yml	38.6.0