CVE-2023-35029 Open redirect with backURL in SEO configuration

Description

Open redirect vulnerability in the Layout module's SEO configuration in Liferay Portal and Liferay DXP allows remote attackers to redirect users to arbitrary external URLs via the `_com_liferay_layout_admin_web_portlet_GroupPagesPortlet_backURL` parameter.

Severity

6.1 (CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)

Affected Version(s)

  • Liferay DXP 7.4 update 70 through 76
  • Liferay Portal 7.4.3.70 - 7.4.3.76

Fixed Version(s)

Acknowledgments

This issue was reported by NDIx

Publication date: Wed, 14 Jun 2023 05:10:00 +0000

Security advisories for Liferay's enterprise offerings (e.g., Liferay DXP) are only listed here since 2023. Historial advisories are availabe in the Help Center.