HtmlUtil.escapeRedirect in Liferay Portal 7.2.0 through 7...
Moderate severity
Unreviewed
Published
Feb 20, 2024
to the GitHub Advisory Database
•
Updated Feb 20, 2024
Description
Published by the National Vulnerability Database
Feb 20, 2024
Published to the GitHub Advisory Database
Feb 20, 2024
Last updated
Feb 20, 2024
HtmlUtil.escapeRedirect in Liferay Portal 7.2.0 through 7.4.3.18, and older unsupported versions, and Liferay DXP 7.4 before update 19, 7.3 before update 4, 7.2 before fix pack 19, and older unsupported versions can be circumvented by using the 'REPLACEMENT CHARACTER' (U+FFFD), which allows remote attackers to redirect users to arbitrary external URLs via the (1) 'redirect
parameter (2)
FORWARD_URLparameter, (3)
noSuchEntryRedirect` parameter, and (4) others parameters that rely on HtmlUtil.escapeRedirect.References