Working Resources Inc.: >> Badblue >> 1.7.0 Security Vulnerabilities
BadBlue 1.7 allows remote attackers to bypass password protections for directories and files via an HTTP request containing an extra / (slash).
CVSS Score
7.5
EPSS Score
0.004
Published
2003-03-31
BadBlue 1.7.0 allows remote attackers to list the contents of directories via a URL with an encoded '%' character at the end.
CVSS Score
5.0
EPSS Score
0.012
Published
2002-08-12