CVE-2026-42509 in Wicketالمعلومات

الملخص

بحسب MITRE • 06/05/2026

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache Wicket.

This issue affects Apache Wicket: from 8.0.0 through 8.17.0, 9.0.0, from 10.0.0 through 10.8.0.

Users are recommended to upgrade to version 10.9.0, which fixes the issue.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

إفشاء

06/05/2026

الاعتدال

تمت الموافقة

إدخال

VDB-361293

CPE

جاهز

CWE

CWE-79 (مؤكد)

CVSS

3.5 (VulDB)

EPSS

0.00183

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-42509
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-42509
CVE Details	https://www.cvedetails.com/cve/CVE-2026-42509/

التالي ▸نظرة عامة ◂ السابق

Might our Artificial Intelligence support you?

Check our Alexa App!