EPSS
Percentile
79.6%
Cross-site scripting (XSS) vulnerability in Apache Wicket 1.4.x before 1.4.22, 1.5.x before 1.5.10, and 6.x before 6.4.0 might allow remote attackers to inject arbitrary web script or HTML via vectors related to <script> tags in a rendered response.
www.securityfocus.com/bid/101644
wicket.apache.org/news/2013/03/03/cve-2012-5636.html