Known Vulnerabilities for products from Grails
Listed below are 4 of the newest known vulnerabilities associated with the vendor "Grails".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
|CVE||Shortened Description||Severity||Publish Date||Last Modified|
|CVE-2022-41923||Grails Spring Security Core plugin is vulnerable to privilege escalation. The vulnerability allows an attacker access to one ...||9.8 - CRITICAL||2022-11-23||2022-11-23|
|CVE-2019-12728||Grails before 3.3.10 used cleartext HTTP to resolve the SDKMan notification service. NOTE: users' apps were not resolving dep...||8.1 - HIGH||2019-06-04||2022-04-18|
|CVE-2018-1000529||Grails Fields plugin version 2.2.7 contains a Cross Site Scripting (XSS) vulnerability in Using the display tag that can resu...||6.1 - MEDIUM||2018-06-26||2018-08-28|
|CVE-2017-6344||XML External Entity (XXE) vulnerability in Grails PDF Plugin 0.6 allows remote attackers to read arbitrary files via a crafte...||5.9 - MEDIUM||2017-02-27||2017-03-02|
|CVE-2014-3626||The Grails Resource Plugin often has to exchange URIs for resources with other internal components. Those other components wi...||7.5 - HIGH||2018-03-19||2018-04-18|
Known software with vulnerabilities from Grails
Popular searches for "Grails"
App Store Grailed - Buy & Sell Clothing Shopping