CVE-2011-2712
published 2011-08-29CVE-2011-2712: Cross-site scripting (XSS) vulnerability in Apache Wicket 1.4.x before 1.4.18, when setAutomaticMultiWindowSupport is enabled, allows remote attackers to…
low2.6CVSS 3.1
AVNACHAuNCNIPAN
Cross-site scripting (XSS) vulnerability in Apache Wicket 1.4.x before 1.4.18, when setAutomaticMultiWindowSupport is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.
Affected
18 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | wicket | — | — |
| apache | wicket | — | — |
| apache | wicket | — | — |
| apache | wicket | — | — |
| apache | wicket | — | — |
| apache | wicket | — | — |
| apache | wicket | — | — |
| apache | wicket | — | — |
| apache | wicket | — | — |
| apache | wicket | — | — |
| apache | wicket | — | — |
| apache | wicket | — | — |
| apache | wicket | — | — |
| apache | wicket | — | — |
| apache | wicket | — | — |
| apache | wicket | — | — |
| apache | wicket | — | — |
| apache | wicket | — | — |