Fluid Attacks Database

Description

Liferay Portal and Liferay DXP Bypass via Double Encoded URL In Liferay Portal before 7.3.1, com.liferay.portal:com.liferay.portal.impl before 7.1.3 and 7.4.0, Liferay Portal 6.2 EE, and Liferay DXP 7.2, DXP 7.1 and DXP 7.0, the property 'portlet.resource.id.banned.paths.regexp' can be bypassed with doubled encoded URLs.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
maven	com.liferay.portal:com.liferay.portal.impl	>=7.2.0 <7.4.0 \|\| >=0 <7.1.3	7.4.0, 7.1.3
maven	com.liferay.portal:release.dxp.bom	>=0 <7.0.10.fp93 \|\| >=7.1.0 <7.1.10.fp19 \|\| >=7.2.0 <7.2.10.fp7	7.0.10.fp93, 7.1.10.fp19, 7.2.10.fp7
maven	com.liferay.portal:release.portal.bom	>=0 <7.3.1	7.3.1

Aliases

1. CVE-2020-158402. NVD-2020-158403. OSV-2020-158404. GCVE-2020-15840

References

1. https://issues.liferay.com/browse/LPE-170462. https://portal.liferay.dev/learn/security/known-vulnerabilities3. https://portal.liferay.dev/learn/security/known-vulnerabilities/-/asset_publisher/HbL5mxmVrnXW/content/id/119772204