CVE: Common Vulnerabilities and Exposures

Required CVE Record Information

Description

Unspecified vulnerability in Apache Wicket 1.4.x before 1.4.23, 1.5.x before 1.5.11, and 6.x before 6.8.0 allows remote attackers to obtain sensitive information via vectors that cause raw HTML templates to be rendered without being processed and reading the information that is outside of wicket:panel markup.

Product Status

Learn more

Information not provided

References 5 Total

seclists.org: 20140206 [CVE-2013-2055] Apache Wicket information disclosure vulnerability
external site
mailing-list
https://wicket.apache.org/2014/02/06/cve-2013-2055.html
external site
osvdb.org: 102955
external site
vdb-entry
https://wicket.apache.org/2013/05/17/wicket-6.8.0-released.html
external site
securityfocus.com: 65431
external site
vdb-entry

Updated: 2024-08-06

This container includes required additional information provided by the CVE Program for this vulnerability.

References 5 Total

seclists.org: 20140206 [CVE-2013-2055] Apache Wicket information disclosure vulnerability
external site
mailing-listx_transferred
https://wicket.apache.org/2014/02/06/cve-2013-2055.html
external site
x_transferred
osvdb.org: 102955
external site
vdb-entryx_transferred
https://wicket.apache.org/2013/05/17/wicket-6.8.0-released.html
external site
x_transferred
securityfocus.com: 65431
external site
vdb-entryx_transferred

Common vulnerabilities and Exposures (CVE)

Required CVE Record Information

CNA: Red Hat, Inc.

Description

Product Status

References 5 Total

CVE Program

References 5 Total