Forums
- Recent Posts
- Forum Rules
Downloads
- Most Active Uploaders
- Latest Reviews
Wiki

Your name or email address:

Password:: Forgot your password?

Stay logged in

: Log in with Facebook
: Log in with Twitter
: Log in with Google

Menu
Forums
Forums

Quick Links
- Recent Posts
- Forum Rules
Downloads
Downloads

Quick Links
- Most Active Uploaders
- Latest Reviews
Wiki
Wiki

Quick Links
Menu

Log In
Sign up

Xiaopan Forums

> Support > News Aggregator >

Liferay 6.2.3 CE GA4 OpenID XXE Injection

Discussion in 'News Aggregator' started by Packet Storm, 4 Jun 2016.

Packet Storm Guest

Liferay supports OpenID login which was found to make use of a version of openid4java that is vulnerable to XML External Entity (XXE) attacks. Liferay versions 6.2.3 CE GA4 and earlier are affected.

Continue reading...

#1 Packet Storm, 4 Jun 2016

(You must log in or sign up to post here.)

Show Ignored Content

Share This Page

Tweet

Loading...

Log in with Facebook
Log in with Twitter
Log in with Google

Your name or email address:

Do you already have an account?

No, create an account now.
Yes, my password is:
Forgot your password?

: Stay logged in

Xiaopan Forums

> Support > News Aggregator >

Toggle Width

Home
Help
Terms and Rules
Privacy Policy
Top

About Us

We are a community mixed with professionals and beginners with an interest in wireless security, auditing and pentesting. Feel free to check out and upload resources.

You can also find us on: Twitter and Facebook

Theme designed by ThemeHouse.

Xiaopan Forums

> Support > News Aggregator >