Tue, 27 Jun 2017 09:00:00 +0000
CST-6236 Various XSS issues in 6.2.5 (Part 2)
Multiple cross-site scripting (XSS) vulnerabilities allow remote attackers to inject arbitrary web script or HTML into a page.
There is no patch available for Liferay Portal 6.2 CE GA6. Instead, users should upgrade to the latest version of Liferay Portal 7.0 CE to fix this issue.