BadBlue 1.7 allows remote attackers to bypass password protections for directories and files via an HTTP request containing an extra / (slash).
Name | Vendor | Start Version | End Version |
---|---|---|---|
Badblue | Working_resources_inc. | 1.7.0 (including) | 1.7.0 (including) |