Tags › Liferay
Liferay: XML External Entity vulnerability in OpenID component
Published on Jan 1, 2016 in liferay, xxe, security advisory
- Vulnerable version: Liferay 6.2.3 CE GA4 and earlier
- Liferay reference: LPS-58014
- Enable Security Advisory: https://www.enablesecurity.com/advisories/ES2016-01-liferay-xxe/
- Timeline:
- Report date: March 16 2015
- Liferay patch: August 26 2015
- Liferay advisory: January 18 2016
- Enable Security advisory: June 1 2016
Description
Liferay supports OpenID login which was found to make use of a version of openid4java that is vulnerable to XML External Entity (XXE) attacks.
Impact
Abuse of the XXE vulnerability can (at least) lead to local file disclosure, server-side request forgery (SSRF) and denial of service. This vulnerability was abused to read local files on the web server that the web application had access to.
…