Liferay.Portal.barebone.jsp.Directory.Traversal

description-logoDescription

This indicates and attack attempt to exploit a Directory Traversal Vulnerability in Liferay Portal.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application. A remote attacker can exploit this to gain unauthorized access to sensitive information.

affected-products-logoAffected Products

Liferay 5.1.0

Impact logoImpact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

recomended-action-logoRecommended Actions

Currently, we are not aware of any vendor-supplied advisory or patch regarding this vulnerability.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-01-14 15.757 Default_action:pass:drop
2019-12-31 15.751