Primary

Context

Liferay DXP Server-Side Request Forgery Vulnerability in Domain Validation

Vulnerability

Patched

A server-side request forgery (SSRF) vulnerability has been identified in Liferay DXP versions 2025.Q2.0 through 2025.Q2.3. The vulnerability arises from insecure domain validation on the 'analytics.cloud.domain.allowed' parameter, which allows attackers to manipulate the domain and bypass validation. This flaw does not differentiate between trusted subdomains and potentially harmful domains, enabling unauthorized requests to be made.

Impact

Exploitation of this vulnerability allows for server-side request forgery, where an attacker can make the server perform requests on their behalf. This could potentially be used to access internal services or resources that are not normally exposed to the outside world.

Remediation

Users can upgrade to Liferay DXP 2025.Q2.4 to address this vulnerability. For those using Liferay Portal, the issue has been fixed in the master branch.

Added: Aug 21, 2025, 9:17 PM

Updated: Aug 21, 2025, 9:17 PM

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

1.9

exploitability

4.8

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

1.9

exploitability

4.8

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Liferay DXP Server-Side Request Forgery Vulnerability in Domain Validation

Vulnerability

Impact

Remediation

Affected Products

Liferay DXP

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating