The Friendly Url module in Liferay Portal 7.4.3.5 through 7.4.3.36, and Liferay DXP 7.4 update 1 though 36 does not properly check user permissions, which allows remote attackers to obtain the history of all friendly URLs that was assigned to a page.
During installation, installed file permissions are set to allow anyone to modify those files.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Digital_experience_platform | Liferay | 7.4-update1 (including) | 7.4-update1 (including) |
Digital_experience_platform | Liferay | 7.4-update36 (including) | 7.4-update36 (including) |
Liferay_portal | Liferay | 7.4.3.5 (including) | 7.4.3.37 (excluding) |