CST-7118 User login is vulnerable to CSRF

Description

User login in Liferay Portal 7.1 CE is vulnerable to Cross-Site Request Forgery (CSRF) attacks.

Severity

Severity 2

Fixed Version(s)

Publication date: Thu, 31 Jan 2019 01:13:00 +0000

Security advisories for Liferay's enterprise offerings (e.g., Liferay DXP) are only listed here since 2023. Historial advisories are availabe in the Help Center.