CVE-2017-6344
CVE-2017-6344 describes an XML External Entity (XXE) vulnerability in Grails PDF Plugin 0.6 that allows an attacker to read arbitrary files by submitting a crafted XML document. The issue arises from XXE in the plugin’s XML processing. Public references (NVD entry and CNVD/PRION/CVE landings) con...