Directory traversal vulnerability in Apache Wicket 1.4.x before 1.4.20 and 1.5.x before 1.5.5 allows remote attackers to read arbitrary web-application files via a relative pathname in a URL for a Wicket resource that corresponds to a null package.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2012-03-23T18:00:00
Updated: 2017-12-12T19:57:01
Reserved: 2012-02-14T00:00:00
Link: CVE-2012-1089
JSON object: View
NVD Information
Status : Modified
Published: 2012-03-23T18:55:01.177
Modified: 2017-12-13T02:29:02.547
Link: CVE-2012-1089
JSON object: View
Redhat Information
No data.
CWE