RSS   Vulnerabilities for 'Grails'   RSS

2012-09-28
 
CVE-2012-1833

 

 
VMware SpringSource Grails before 1.3.8, and 2.x before 2.0.2, does not properly restrict data binding, which might allow remote attackers to bypass intended access restrictions and modify arbitrary object properties via a crafted request parameter to an application.

 

 >>> Vendor: Springsource 5 Products
Application management suite
Hyperic hq
Tc server
Spring framework
Grails


Copyright 2024, cxsecurity.com

 

Back to Top