Lucene search
MitreCVELIST:CVE-2014-2857HistoryApr 15, 2014 - 6:00 p.m.
CVE-2014-2857
2014-04-1518:00:00
mitre
www.cve.org
The default configuration of the Resources plugin 1.0.0 before 1.2.6 for Pivotal Grails 2.0.0 through 2.3.6 does not properly restrict access to files in the META-INF directory, which allows remote attackers to obtain sensitive information via a direct request. NOTE: this issue was SPLIT from CVE-2014-0053 due to different researchers per ADT5.
Related
prion
prion
Default configuration
2014-04-15 23:55:00
Directory traversal
2014-04-15 23:55:00
Directory traversal
2014-04-15 23:55:00
cve
cve
nvd
nvd
cvelist
cvelist
CVE-2014-0053
2014-04-15 18:00:00
CVE-2014-2858
2014-04-15 18:00:00
nessus
nessus
Grails resources plug-in WEB-INF / META-INF File Disclosure
2014-03-01 00:00:00
openvas
openvas
'/WEB-INF/' Information Disclosure Vulnerability (HTTP)
2021-02-11 00:00:00
securityvulns
securityvulns
Update: CVE-2014-0053 Information Disclosure when using Grails
2014-05-05 00:00:00