Maven · com.liferay.portal:release.portal.bom • Maven · com.liferay.portal:release.dxp.bom • Maven · com.liferay:com.liferay.portal.workflow.task.web
Liferay Portal and Liferay DXP vulnerable to Stored Cross-site Scripting
Is your project exposed to this? Stateward checks every dependency on every pull request and flags it only if your code actually reaches it.
Check my repoSources: CISA KEV (public domain), OSV.dev & GitHub Advisory Database (CC-BY-4.0), FIRST EPSS, NVD/CWE (public domain). Served live from the Stateward advisory database.