Liferay

Security Scorecard

Score

42F

Total CVEs

60

Patch Rate

0%

0 patched

Avg Response

-

days to patch

Critical Gaps

0

exploitable, no detection

Severity Breakdown

Critical1

High4

Medium55

Low0

Patch Status

Patched0 (0%)

Partial/Workaround2 (3%)

Unpatched58 (97%)

CVEs (60)

CVE ID	Title	Severity	Score	Days	Patch
CVE-2025-43771	Liferay Notifications Widget XSS	MEDIUM	5.4	68d	Unpatched
CVE-2025-43823	Liferay XSS Vulnerability	MEDIUM	5.4	69d	Unpatched
CVE-2025-43825	Liferay Freemarker Template Vulnerability	MEDIUM	6.5	73d	Unpatched
CVE-2025-43827	Liferay IDOR Vulnerability	MEDIUM	4.3	76d	Unpatched
CVE-2025-43826	Liferay Portal XSS	MEDIUM	5.4	76d	Unpatched
CVE-2025-43806	Liferay Portal Vulnerability	MEDIUM	4.3	82d	Unpatched
CVE-2025-43810	Liferay Commerce Order IDOR Exploit	MEDIUM	4.3	82d	Unpatched
CVE-2025-43814	Liferay Audit Event Bypass	MEDIUM	6.5	82d	Unpatched
CVE-2025-43808	Liferay Commerce Vulnerability	MEDIUM	5.3	87d	Unpatched
CVE-2025-43803	Liferay IDOR Vulnerability	MEDIUM	4.3	88d	Unpatched