CVE-2011-1571

Published: May 7, 2011Modified: Apr 29, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

Unspecified vulnerability in the XSL Content portlet in Liferay Portal Community Edition (CE) 5.x and 6.x before 6.0.6 GA, when Apache Tomcat is used, allows remote attackers to execute arbitrary commands via unknown vectors.

Affected (2)

Products: Liferay: Liferay Portal

Liferay

1 product

Liferay Portal

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Liferay Liferay Portal	From 5.1.0 to 5.1.2
Liferay Liferay Portal	From 6.0.0 to 6.0.5

References (10)

http://issues.liferay.com/browse/LPS-14726

Source: secalert@redhat.com

Issue TrackingVendor Advisory

http://issues.liferay.com/secure/ReleaseNote.jspa?version=10656&styleName=Html&projectId=10952

Source: secalert@redhat.com

Release NotesVendor Advisory

http://openwall.com/lists/oss-security/2011/03/29/1

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://openwall.com/lists/oss-security/2011/04/08/5

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://openwall.com/lists/oss-security/2011/04/11/9

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://issues.liferay.com/browse/LPS-14726

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingVendor Advisory

http://issues.liferay.com/secure/ReleaseNote.jspa?version=10656&styleName=Html&projectId=10952

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

http://openwall.com/lists/oss-security/2011/03/29/1

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://openwall.com/lists/oss-security/2011/04/08/5

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://openwall.com/lists/oss-security/2011/04/11/9

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

Timeline

No history available yet.