Miggo Logo
Miggo Vulnerability Database
CVE-2010-5327

CVE-2010-5327: Shell command injection in Liferay Portal

8.8

CVSS Score
3.0

Basic Information

CVE ID
CVE-2010-5327
GHSA ID
GHSA-97gm-mcv6-cphm
EPSS Score
0.80547%
CWE
-
Published
5/17/2022
Updated
1/10/2024
KEV Status
No
Technology
TechnologyJava

Technical Details

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
com.liferay.portal:portal-implmaven< 6.2.116.2.11
com.liferay.portal:portal-servicemaven< 6.2.116.2.11

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from insufficient security controls in template processing. The commit patching CVE-2010-5327 introduces PACL enforcement (PACLVelocityTemplate/PACLFreeMarkerTemplate), replaces ObjectConstructor with a secured version, and adds class resolution restrictions. The vulnerable functions are the unpatched versions of these methods, which allowed arbitrary class instantiation and template execution without proper security context. The high confidence comes from direct correlation between the vulnerability description (Velocity template RCE) and the security measures added in the commit.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

Li**r*y Port*l t*rou** *.*.** *llows r*mot* *ut**nti**t** us*rs to *x**ut* *r*itr*ry s**ll *omm*n*s vi* * *r**t** V*lo*ity t*mpl*t*.

Reasoning

T** vuln*r**ility st*ms *rom insu**i*i*nt s**urity *ontrols in t*mpl*t* pro**ssin*. T** *ommit p*t**in* *V*-****-**** intro*u**s P**L *n*or**m*nt (P**LV*lo*ityT*mpl*t*/P**L*r**M*rk*rT*mpl*t*), r*pl***s O*j**t*onstru*tor wit* * s**ur** v*rsion, *n* **