CVE-2020-15839

EPSS 1.08% · P78 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2020-15839

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Liferay Portal before 7.3.3, and Liferay DXP 7.1 before fix pack 18 and 7.2 before fix pack 6, does not restrict the size of a multipart/form-data POST action, which allows remote authenticated users to conduct denial-of-service attacks by uploading large files.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Liferay 代码问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Liferay Portal和Liferay DXP都是美国Liferay公司的产品。Liferay Portal是一套基于J2EE的门户解决方案。该方案使用了EJB以及JMS等技术，并可作为Web发布和共享工作区、企业协作平台、社交网络等。Liferay DXP是一套数字化体验协作平台。 Liferay 存在安全漏洞。该漏洞源于未限制multipart/form-data POST，攻击者可利用该漏洞上传大文件。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2020-15839

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2020-15839

请登录查看更多情报信息。

https://issues.liferay.com/browse/LPE-17055x_refsource_MISC
https://portal.liferay.dev/learn/security/known-vulnerabilities/-/asset_publisher/HbL5mxmVrnXW/content/id/119784928x_refsource_CONFIRM
https://issues.liferay.com/browse/LPE-17029x_refsource_MISC
https://portal.liferay.dev/learn/security/known-vulnerabilitiesx_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2020-15839

Same Patch Batch · n/a · 2020-09-22 · 22 CVEs total

CVE-2020-7734	8.2 HIGH	Cross-site Scripting (XSS)
CVE-2020-25487		PHPGURUKUL Zoo Management System SQL注入漏洞
CVE-2020-24619		Shotcut 加密问题漏洞
CVE-2020-8887		Telestream Tektronix Medius 和 Sentry SQL注入漏洞
CVE-2020-23446		Verint Workforce Optimization Suite 安全漏洞
CVE-2020-3977		VMware Horizon DaaS 访问控制错误漏洞
CVE-2020-11855		Micro Focus Operation Bridge Reporter 安全漏洞
CVE-2020-11857		Micro Focus Operation Bridge Reporter 信任管理问题漏洞
CVE-2020-11856		Micro Focus Operation Bridge Reporter 安全漏洞
CVE-2020-16202		Advantech WebAccess Node 安全漏洞
CVE-2020-24333		Arista Networks CloudVision Portal 授权问题漏洞
CVE-2020-25515		Library Management System 代码问题漏洞
CVE-2020-14031		Ozeki NG SMS Gateway 安全漏洞
CVE-2020-14028		Ozeki NG SMS Gateway Autoreply 路径遍历漏洞
CVE-2020-14027		Ozeki NG SMS Gateway 参数注入漏洞
CVE-2020-14026		Ozeki NG SMS Gateway 安全漏洞
CVE-2020-14023		Ozeki NG SMS Gateway 代码问题漏洞
CVE-2020-14024		Ozeki NG SMS Gateway 跨站脚本漏洞
CVE-2020-14025		Ozeki NG SMS Gateway 跨站请求伪造漏洞
CVE-2020-14022		Ozeki NG SMS Gateway 代码问题漏洞

Showing top 20 of 22 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2020-15839

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2020-15839

I. Basic Information for CVE-2020-15839

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2020-15839

III. Intelligence Information for CVE-2020-15839

Same Patch Batch · n/a · 2020-09-22 · 22 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2020-15839

Leave a comment