CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-1000529

Grails Fields plugin version 2.2.7 contains a Cross Site Scripting (XSS) vulnerability in Using the display tag that can result in XSS . This vulnerability appears to have been fixed in 2.2.8.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 56.3%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://github.com/grails-fields-plugin/grails-fields/issues/278
https://github.com/martinfrancois/CVE-2018-1000529
https://github.com/grails-fields-plugin/grails-fields/issues/278
https://github.com/martinfrancois/CVE-2018-1000529

Products affected by CVE-2018-1000529

Grails » Grails Fields » Version: 2.2.7

cpe:2.3:a:grails:grails_fields:2.2.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-1000529

Products

Pricing

Contact Us