Fortress
1 CVEs
product
Monthly
By crafting a special URL it is possible to make Wicket deliver unprocessed HTML templates. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Apache
Path Traversal
Information Disclosure
Fortress
Wicket
NVD
CVSS 3.1
7.5
EPSS
3.8%
CVE-2020-11976
Maven
EPSS 4%
CVSS 7.5
HIGH
PATCH
This Week
By crafting a special URL it is possible to make Wicket deliver unprocessed HTML templates. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Apache
Path Traversal
Information Disclosure
+2
NVD