IMPORTANT: CVE-2014-0053 Information Disclosure in Grails applications
We recently were informed of a security vulnerability in the resources
plugin that ships with all Grails versions since 2.0.x.
If you application is not using the resources plugin you can safely
ignore this disclosure.
This vulnerability has been rectified in Grails 2.3.6 by explicitly
checking the default configuration for the resources plugin, but
earlier versions of Grails require the addition of the following code