SSD Advisory – AppWeb Authentication Bypass (Digest, and Basic)
Vulnerability Summary A critical vulnerability in the EmbedThis HTTP library, and Appweb versions 5.5.x, 6.x, and 7.x including the latest version present in the git repository. In detail, due to a logic flaw, with a forged HTTP request it is possible to bypass the authentication for HTTP basic and HTTP digest login types. Confirmed Vulnerable …
SSD Advisory – AppWeb Authentication Bypass (Digest, and Basic) Read More »