WWW File Share Pro 2.42 and earlier allows remote attackers to bypass directory access restrictions via (1) a URL with a trailing . (dot), or (2) a URI with a leading slash or backslash character.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Www_file_share_pro | Lionmax_software | * | 2.42 (including) |