Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Liferay Portal Unchecked Input for Loop Condition Vulnerability - CVE-2025-43801 - Vulnerability Database
Liferay Portal

Liferay Portal Unchecked Input for Loop Condition Vulnerability - CVE-2025-43801

High
Reference: CVE-2025-43801
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2025-43801
Title: Liferay Portal Unchecked Input for Loop Condition Vulnerability
Overview:

Unchecked input for loop condition vulnerability in XML-RPC in Liferay Portal 7.4.0 through 7.4.3.111 and older unsupported versions and Liferay DXP 2023.Q4.0 2023.Q3.1 through 2023.Q3.4 7.4 GA through update 92 7.3 GA through update 35 and older unsupported versions allows remote attackers to perform a denial-of-service (DoS) attacks via a crafted XML-RPC request.