Monthly archive for August 2016

CVE-2016-3092 & CVE-2013-2186 Apache Commons Fileupload vulnerabilities

05 Aug 2016

Severity: Important

Vendor: The Apache Software Foundation

Versions Affected: Apache Wicket 1.5.x, 6.x and 7.x

Description:

CVE-2016-3092: A malicious client can send file upload requests that cause the HTTP server using the Apache Commons Fileupload library to bec...

more

Wicket 1.5.16 released

05 Aug 2016

This is the sixteenth maintenance release of the Wicket 1.5.x series. This release brings over 2 bug fixes.

CHANGELOG for 1.5.16:

Bug

  • CVE-2013-2186...
more