CVE-2024-26273 | Liferay Portal/DXP cross-site request forgery
A vulnerability has been found in Liferay Portal and DXP and classified as problematic. This vulnerability affects unknown code. The manipulation of the argument _com_liferay_commerce_catalog_web_internal_portlet_CommerceCatalogsPortlet_redirect leads to cross-site request forgery.
This vulnerability was named CVE-2024-26273. The attack can be initiated remotely. There is no exploit available.