CVE-2024-53299 Information

Description

The request handling in the core in Apache Wicket 7.0.0 on any platform allows an attacker to create a DOS via multiple requests to server resources. Users are recommended to upgrade to versions 9.19.0 or 10.3.0 which fixes this issue.

Reference

http://www.openwall.com/lists/oss-security/2025/01/22/12 https://lists.apache.org/thread/gyp2ht00c62827y0379lxh5dbx3hhho5