CVE-2012-1089 in Wicketinfo

Zusammenfassung (Englisch)

Directory traversal vulnerability in Apache Wicket 1.4.x before 1.4.20 and 1.5.x before 1.5.5 allows remote attackers to read arbitrary web-application files via a relative pathname in a URL for a Wicket resource that corresponds to a null package.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservieren

14.02.2012

Veröffentlichung

23.03.2012

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
4882	Apache Wicket Directory Traversal	22	Proof-of-Concept	Offizieller Fix	CVE-2012-1089

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

MITRE
NVD
CVE Details

◂ ZurückÜbersichtWeiter ▸

Do you know our Splunk app?

Download it now for free!