Full title: Liferay Portal Remote Code Execution Exploit 
Category: remote exploits
Platform: java
Liferay Portal versions prior to 7.2.1 CE GA2 exploit that gains code execution due to deserialization of untrusted data sent to the JSON web services interface.

# 0day.today @ http://0day.today/