Description

Your web application uses the Express.js server framework with case-insensitive routing enabled. This can lead to authentication bypass vulnerabilities when security controls are applied to routes based on string matching. By altering the case of the URL, an attacker can bypass authentication middleware applied to specific routes, gaining unauthorized access to protected resources.

Remediation

Enforce case-sensitive routing: Modify your Express.js application configuration to enforce case-sensitive routing. Additionally, ensure that your middleware functions are case-sensitive and can handle varying case scenarios. Regularly test and review your application's security controls to ensure they work as expected and do not contain bypass vulnerabilities.

References

Express case sensitive routing

Related Vulnerabilities

WordPress Plugin BuddyPress Multiple Security Bypass Vulnerabilities (7.2.0)

WordPress Plugin Images Slideshow by 2J-Image Slider Security Bypass (1.3.31)

PAN-OS Management Interface Authentication Bypass (CVE-2025-0108)

WordPress Plugin leads5050-visitor-insights Security Bypass (1.0.5)

WordPress Plugin Smart Forms-when you need more than just a contact form Security Bypass (2.6.70)

Severity

High

Classification

CWE-287 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Tags

Authentication Bypass Configuration