Access Control Bypass in Perception LiteWeb via Leading Slash or Backslash in URL

Access Control Bypass in Perception LiteWeb via Leading Slash or Backslash in URL

CVE-2005-1908 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Perception LiteWeb allows remote attackers to bypass access controls for files via an extra leading / (slash) or leading \ (backslash) in the URL.

Learn more about our Web App Pen Testing.