CST-7303 Circumvention of open redirect prevention using tabs

Description

In Liferay Portal before 7.3.1, the PortalUtil.escapeRedirect() API can be circumvented by using the tab character. This may allow an attacker to redirect a user to an external site (i.e., an open redirect vulnerability).

Severity

Severity 2

Fixed Version(s)

Acknowledgments

This issue was reported by Jawwad Hussain

Publication date: Tue, 09 Jun 2020 02:00:00 +0000

Security advisories for Liferay's enterprise offerings (e.g., Liferay DXP) are only listed here since 2023. Historial advisories are availabe in the Help Center.