Unspecified vulnerability in Apache Wicket 1.4.x prior to 1.4.23, 1.5.x prior to 1.5.11, and 6.x prior to 6.8.0 allows remote malicious users to obtain sensitive information via vectors that cause raw HTML templates to be rendered without being processed and reading the information that is outside of wicket:panel markup.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache wicket 1.5.10 |
||
apache wicket 1.5.0 |
||
apache wicket 1.5.1 |
||
apache wicket 1.5.2 |
||
apache wicket 1.4.14 |
||
apache wicket 1.4.15 |
||
apache wicket 1.4.16 |
||
apache wicket 1.4.17 |
||
apache wicket 6.1.1 |
||
apache wicket 6.2.0 |
||
apache wicket 6.3.0 |
||
apache wicket 6.4.0 |
||
apache wicket 6.5.0 |
||
apache wicket 1.5.7 |
||
apache wicket 1.5.8 |
||
apache wicket 1.4.22 |
||
apache wicket 1.4.0 |
||
apache wicket 6.6.0 |
||
apache wicket 6.8.0 |
||
apache wicket 1.5.4 |
||
apache wicket 1.5.6 |
||
apache wicket 1.4.1 |
||
apache wicket 1.4.11 |
||
apache wicket 1.4.13 |
||
apache wicket 1.4.18 |
||
apache wicket 1.4.20 |
||
apache wicket 6.1.0 |
||
apache wicket 6.7.0 |
||
apache wicket 1.5.9 |
||
apache wicket 1.5.3 |
||
apache wicket 1.5.5 |
||
apache wicket 1.4.10 |
||
apache wicket 1.4.12 |
||
apache wicket 1.4.19 |
||
apache wicket 1.4.21 |