Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
JSP authentication bypass - Vulnerability Database

JSP authentication bypass

Description

Manual confirmation is required for this alert.

Your web application is restricting access to this .jsp file using Basic Authentication. It looks like Invicti managed to bypass this restriction by replacing the .jsp extension with .jsp;.css.

Remediation

Review your authentication rules and make sure that files that end with .jsp;.css cannot bypass the authentication.

References

OWASP - Path Traversal
CWE-22: Improper Limitation of a Pathname to a Restricted Directory (Path Traversal)

Related Vulnerabilities

URL rewrite vulnerability Medium
Common tags: Abuse Of Functionality Authentication Bypass
DotNetNuke multiple vulnerabilities High
Common tags: Abuse Of Functionality Authentication Bypass
Unsafe use of Reflection High
Common tags: Abuse Of Functionality Authentication Bypass
WordPress plugin Custom Contact Forms critical vulnerability High
Common tags: Abuse Of Functionality Authentication Bypass
WordPress Plugin Simple Giveaways-Grow your business, email lists and traffic with contests Security Bypass (2.17.3) High
Common tags: Authentication Bypass

Severity

High

Classification

CWE-287
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Tags

Abuse Of Functionality
Authentication Bypass