CVE-2025-4576 Scanner

Liferay Portal & DXP is a widely used open-source enterprise software solution designed for creating web experiences, such as websites, portals, and intranets. It is used by businesses and developers to manage and build digital environments with features like content management and collaboration tools.

The detected vulnerability is a Cross-Site Scripting (XSS) issue affecting certain versions of Liferay Portal & DXP. XSS vulnerabilities allow an attacker to inject malicious scripts into web pages viewed by other users. This specific vulnerability is caused by improper sanitization in the `entry_cover_image_caption.jsp` file, which potentially lets remote non-authenticated attackers execute JavaScript code in the context of other users.

The vulnerability specifically affects the `entry_cover_image_caption.jsp` endpoint in the Liferay software. Attackers can exploit this endpoint by injecting scripts that execute in the victim's browser, allowing them to perform actions such as displaying pop-up alerts and accessing session information. Exploiting this vulnerability does not require prior authentication or special user privileges.

If exploited, this vulnerability can lead to several malicious outcomes, including session hijacking, unauthorized actions performed on behalf of a user, and redirection to malicious websites. Once the attacker injects the script, they gain the ability to manipulate the client's browser behavior, potentially leading to further security breaches.

REFERENCES

• https://github.com/advisories/GHSA-6qcg-28jh-hm7r
• https://nvd.nist.gov/vuln/detail/CVE-2025-4576