Home
MEDIUM: 5.1 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:NDefault status
unaffected
7.4.0 (maven)
affected
Default status
unaffected
7.4.13 (maven)
affected
2024.Q1.1 (maven)
affected
2024.Q2.0 (maven)
affected
2024.Q3.1 (maven)
affected
2024.Q4.0 (maven)
affected
2025.Q1.0 (maven)
affected
Description
SSRF vulnerability in FreeMarker templates in Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q1.0 through 2025.Q1.5, 2024.Q4.0 through 2024.Q4.7, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, 2024.Q1.1 through 2024.Q1.15, 7.4 GA through update 92 allows template editors to bypass access validations via crafted URLs.
Problem types
CWE-918 Server-Side Request Forgery (SSRF)
Product status
7.4.0 (maven)
7.4.13 (maven)
2024.Q1.1 (maven)
2024.Q2.0 (maven)
2024.Q3.1 (maven)
2024.Q4.0 (maven)
2025.Q1.0 (maven)
Credits
José Ricardo (ricard0x)
References
liferay.dev/.../-/asset_publisher/jekt/content/CVE-2025-4655