pkg:maven/org.apache.wicket/wicket-core
Type
maven
Namespace
org.apache.wicket
Name
wicket-core
Known advisories, vulnerabilities and fixes for org.apache.wicket/wicket-core package.
High
4
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | = 9.0.0-M5 = 9.0.0-M4 = 9.0.0-M3 = 9.0.0-M2 = 9.0.0-M1 >= 8.0.0, < 8.9.0 < 7.17.0 |
CVE-2020-11976
|
 MAVEN:GHSA-64GV-3PQV-299H
|
Exposure of Sensitive Information to an Unauthorized Actor in Apache Wicket | high |
2021-05-07T15:54:15
(3 years ago) |
|
| Fixed | = 9.0.0 = 8.9.0 = 7.17.0 |
CVE-2020-11976
|
MAVEN:GHSA-64GV-3PQV-299H
|
Exposure of Sensitive Information to an Unauthorized Actor in Apache Wicket | high |
2021-05-07T15:54:15
(3 years ago) |
|
| Affected | >= 8.0.0, < 8.16.0 >= 9.0.0, < 9.18.0 >= 10.0.0-M1, < 10.1.0 |
CVE-2024-36522
|
MAVEN:GHSA-HHWC-GH8H-9RRP
|
Apache Wicket: Remote code execution via XSLT injection | high |
2024-07-12T15:31:26
(2 months ago) |
|
| Fixed | = 8.16.0 = 9.18.0 = 10.1.0 |
CVE-2024-36522
|
MAVEN:GHSA-HHWC-GH8H-9RRP
|
Apache Wicket: Remote code execution via XSLT injection | high |
2024-07-12T15:31:26
(2 months ago) |
|
| Affected | < 7.18.0 >= 8.0.0, < 8.12.0 >= 9.0.0, < 9.3.0 |
CVE-2021-23937
|
MAVEN:GHSA-HMHG-95WH-R699
|
DNS based denial of service in Apache Wicket | high |
2022-05-24T19:03:11
(2 years ago) |
|
| Fixed | = 7.18.0 = 8.12.0 = 9.3.0 |
CVE-2021-23937
|
MAVEN:GHSA-HMHG-95WH-R699
|
DNS based denial of service in Apache Wicket | high |
2022-05-24T19:03:11
(2 years ago) |
|
| Affected | >= 7.0.0-M1, < 7.0.0-M3 >= 6.0, < 6.17.0 < 1.5.12 |
CVE-2014-3526
|
MAVEN:GHSA-Q7WX-MHX4-JR8Q
|
Apache Wicket Sensitive Data Exposure | high |
2022-05-13T01:30:20
(2 years ago) |
|
| Fixed | = 7.0.0-M3 = 6.17.0 = 1.5.12 |
CVE-2014-3526
|
MAVEN:GHSA-Q7WX-MHX4-JR8Q
|
Apache Wicket Sensitive Data Exposure | high |
2022-05-13T01:30:20
(2 years ago) |