Severity: high

Authorization Bypass

lemonldap-ng-handler

Overview

When access rules are used inside a protected host, some URL encodings may bypass filtering system.

Remediation

Upgrade to version 0.5.2.

Have content suggestions? Send them to [email protected]

Advisory timeline

  1. published

    Advisory Published
    Sep 10th, 2020
  2. reported

    Reported by Unknown
    Sep 10th, 2020