Re: [ANNOUNCE] CVE-2016-6793 Apache Wicket deserialization vulnerability

2017-01-03 Thread durairaj t
Thank you! On Tue, Jan 3, 2017 at 4:11 PM, Tobias Soloschenko < tobiassolosche...@googlemail.com> wrote: > Hi, > > but it is released. See here: https://mvnrepository.com/arti > fact/org.apache.wicket/wicket-core/1.5.17 > > kind regards > > Tobias > > Am 03.01.17 um 21:25 schrieb durairaj t: >

Re: [ANNOUNCE] CVE-2016-6793 Apache Wicket deserialization vulnerability

2017-01-03 Thread Tobias Soloschenko
Hi, but it is released. See here: https://mvnrepository.com/artifact/org.apache.wicket/wicket-core/1.5.17 kind regards Tobias Am 03.01.17 um 21:25 schrieb durairaj t: I can see the Wicket 1.5.16 but not 1.5.17 in " https://wicket.apache.org/start/wicket-1.5.x.html#download;. On Sat, Dec

Re: [ANNOUNCE] CVE-2016-6793 Apache Wicket deserialization vulnerability

2017-01-03 Thread durairaj t
I can see the Wicket 1.5.16 but not 1.5.17 in " https://wicket.apache.org/start/wicket-1.5.x.html#download;. On Sat, Dec 31, 2016 at 2:21 AM, Pedro Santos wrote: > CVE-2016-6793: Apache Wicket deserialization vulnerability > > Severity: Low > > Vendor: The Apache Software

Log tailer sample?

2017-01-03 Thread Francesco Chicchiriccò
Hi all, is there any sample about building a log tailer with Wicket? I have found [1] [2] so far. Thanks in advance. Regards. [1] http://apache-wicket.1842946.n4.nabble.com/How-to-build-a-hudson-jenkins-like-live-log-viewer-td4090224.html [2]

Re: how to get incoming request from external application in wicket.

2017-01-03 Thread Martin Grigorov
Hi, Your question is not very clear. I guess this is the reason why no one responded so far. Please give more details about the use case. You cannot share sessions between two applications, i.e. you cannot extract the user that easy. To be able to do this you need to use more sophisticated