Tue, 03 Apr 2018 09:15:00 +0000
CST-7044 Content spoofing via URL manipulation
Content spoofing is possible via URL manipulation in applications that suppor tags. An attacker can potentially exploit this security vulnerability to spoof content and mislead users.
There is no patch available for Liferay Portal 7.0 CE GA5. Instead, users should upgrade to Liferay Portal 7.0 CE GA6 (7.0.5) or later to fix this issue.