Where
-Infinity
0

Trending

Last week
Last month
Last year

Apache wicketApache Wicket: Possible malicious path traversal in FolderUploadsFileManager

Risk 42
Severity
6.5
First published (updated )
CVE-2026-43975

Apache wicketApache Wicket: crafted URLs can bypass PackageResourceGuard

Risk 46
Severity
7.5
First published (updated )
CVE-2026-43646

Apache wicketApache Wicket: crafted strings can break out of the JavaScript sequence

Risk 40
Severity
6.1
First published (updated )
CVE-2026-42509

Apache wicketApache Wicket: possible session fixation using AuthenticatedWebSession

Risk 70
Severity
9.1
First published (updated )
CVE-2026-40010

oss-secCVE-2026-43975: Apache Wicket: Possible malicious path traversal in FolderUploadsFileManager

First published (updated )
https://seclists.org/oss-sec/2026/q2/418
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

oss-secCVE-2026-43646: Apache Wicket: crafted URLs can bypass PackagesourceGuard

First published (updated )
https://seclists.org/oss-sec/2026/q2/417

oss-secCVE-2026-42509: Apache Wicket: crafted strings can bak out of the JavaScript sequence

First published (updated )
https://seclists.org/oss-sec/2026/q2/416

oss-secCVE-2026-40010: Apache Wicket: possible session fixation using AuthenticatedWebSession

First published (updated )
https://seclists.org/oss-sec/2026/q2/415

Apache wicketApache Wicket: An attacker can intentionally trigger a memory leak

Risk 40
Severity
6.5
First published (updated )
CVE-2024-53299

CVE-2024-53299: Apache Wicket: An attacker can intentionally trigger a memory leak

First published (updated )
https://seclists.org/oss-sec/2025/q1/56
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

CVE-2024-36522: Apache Wicket: mote code execution via XSLT injection

First published (updated )
https://seclists.org/oss-sec/2024/q3/58

CVE-2024-27439: Apache Wicket: Possible bypass of CSRF protection

First published (updated )
https://seclists.org/oss-sec/2024/q1/235

Apache wicketDNS proxy and possible amplification attack

Risk 44
Severity
7.5
First published (updated )
CVE-2021-23937

Apache wicketBy crafting a special URL it is possible to make Wicket deliver unprocessed HTML templates. This wou…

Risk 43
Severity
7.5
First published (updated )
CVE-2020-11976

Apache wicketXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2012-5636
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache wicketInfoleak

Risk 44
Severity
7.5
First published (updated )
CVE-2014-3526

Apache wicketInfoleak

Risk 27
Severity
5.3
First published (updated )
CVE-2014-0043

Apache wicketCSRF

Risk 77
Severity
8.8
First published (updated )
CVE-2016-6806

Apache wicketWeak Encryption

Risk 43
Severity
7.5
First published (updated )
CVE-2014-7808

Apache wicketThe DiskFileItem class in Apache Wicket 6.x before 6.25.0 and 1.5.x before 1.5.17 allows remote atta…

Risk 66
Severity
9.1
First published (updated )
CVE-2016-6793
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache wicketXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2015-5347

Apache wicketXSS

Risk 38
Severity
6.1
First published (updated )
CVE-2015-7520

Apache wicketUnspecified vulnerability in Apache Wicket 1.4.x before 1.4.23, 1.5.x before 1.5.11, and 6.x before …

Risk 26
Severity
5
First published (updated )
CVE-2013-2055

Apache wicketXSS

Risk 22
Severity
4.3
First published (updated )
CVE-2012-3373

Apache wicketXSS

Risk 22
Severity
4.3
First published (updated )
CVE-2012-0047
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Apache wicketPath Traversal

Risk 26
Severity
5
First published (updated )
CVE-2012-1089

Apache wicketXSS

Risk 15
Severity
2.6
First published (updated )
CVE-2011-2712

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203