org.grails:grails-databinding@5.1.0 vulnerabilities
-
latest version
6.2.0
-
latest non vulnerable version
-
first published
11 years ago
-
latest version published
4 months ago
-
licenses detected
- [2.3.0.M1,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.grails:grails-databinding package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.| Vulnerability | Vulnerable Version |
|---|---|
org.grails:grails-databinding is a Grails Web Application Framework Affected versions of this package are vulnerable to Uncontrolled Resource Consumption via specially crafted web requests that lead to data binding issues. An attacker can cause a JVM crash or denial of service by sending such requests to the application. How to fix Uncontrolled Resource Consumption? Upgrade |
[2.0.0,3.3.17)
[4.0.0,4.1.3)
[5.0.0,5.3.4)
[6.0.0,6.1.0)
|
org.grails:grails-databinding is a Grails Web Application Framework Affected versions of this package are vulnerable to Arbitrary Code Execution in NOTE: This vulnerability is confirmed to exist on systems running Java 8 but exploitation on systems running higher Java versions has not been ruled out. How to fix Arbitrary Code Execution? Upgrade |
[3.0.0.M1,3.3.15)
[4.0.0.RC1,4.1.1)
[5.0.0.M1,5.1.9)
[5.2.0,5.2.1)
|