8 lines
No EOL
445 B
Text
8 lines
No EOL
445 B
Text
source: http://www.securityfocus.com/bid/13850/info
|
|
|
|
LiteWeb Server is prone to a vulnerability that may let remote attackers bypass authentication.
|
|
|
|
The specific issue is inadequate sanitization of user-supplied requests. In particular, there is an error in the handling of slash characters '/\' that will allow remote users to access protected files.
|
|
|
|
http://www.example.com/\admin\/login.html
|
|
http://www.example.com//admin//login.html |