CVE-2016-7098
CVE-2016-7098 affects GNU Wget 1.17 and earlier. A race condition in recursive/mirroring mode can allow remote servers to bypass access-list restrictions by keeping an HTTP connection open. Public evidence includes exploit-db entries for GNU Wget