3 matches found
CVE-2019-10770
All versions of io.ratpack:ratpack-core from 0.9.10 inclusive and before 1.7.6 are vulnerable to Cross-site Scripting XSS. This affects the development mode error handler when an exception message contains untrusted data. Note the production mode error handler is not vulnerable - so for this to b...
CVE-2019-10770
The CVE-2019-10770 entry affects io.ratpack:ratpack-core. The vulnerability is an XSS in the development mode error handler when an exception message contains untrusted data; the production-mode error handler is not vulnerable. Affected versions are Ratpack-core 0.9.10 up to, but not including, 1...
com.bertramlabs.plugins:ratpack-asset-pipeline (>=2.2.7 <=4.3.0), com.bytekast.serverless-local-apigateway:com.bytekast.serverless-local-apigateway.gradle.plugin (>=0.4 <=0.5) +88 more potentially affected by CVE-2019-10770 via io.ratpack:ratpack-core (>=0.9.10 <=1.7.5)
io.ratpack:ratpack-core MAVEN version =0.9.10, =2.2.7, =0.4, =0.0.1, =0.0.1, =0.0.2, =1.0.0, =1.2, =1.2, =1.3, =1.1, =1.1, =1.5, =1.1, =1.8 and more Source cves: CVE-2019-10770 Source advisory: SNYK:JAVA-IORATPACK-534882...