Vulnerabilities (CVE)

Vendor filter

Grails Subscribe


3 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-12728 1 Grails 1 Grails 2019-10-09 6.8
Grails before 3.3.10 used cleartext HTTP to resolve the SDKMan notification service. NOTE: users' apps were not resolving dependencies over cleartext HTTP.
CVE-2018-1000529 1 Grails 1 Grails Fields 2018-08-28 4.3
Grails Fields plugin version 2.2.7 contains a Cross Site Scripting (XSS) vulnerability in Using the display tag that can result in XSS . This vulnerability appears to have been fixed in 2.2.8.
CVE-2017-6344 1 Grails 1 Pdf Plugin 2017-03-02 4.3
XML External Entity (XXE) vulnerability in Grails PDF Plugin 0.6 allows remote attackers to read arbitrary files via a crafted XML document.