Apache : Security Vulnerabilities, CVEs, Published In 2012 (Directory traversal)
Directory traversal vulnerability in Apache Wicket 1.4.x before 1.4.20 and 1.5.x before 1.5.5 allows remote attackers to read arbitrary web-application files via a relative pathname in a URL for a Wicket resource that corresponds to a null package.
Max CVSS
5.0
EPSS Score
0.19%
Published
2012-03-23
Updated
2017-12-13
1 vulnerabilities found