Description
mod_access.c in lighttpd 1.4.15 ignores trailing / (slash) characters in the URL, which allows remote attackers to bypass url.access-deny settings.
Remediation
References
Related Vulnerabilities
Drupal Core 5.x Multiple Vulnerabilities (5.0 - 5.12)
WordPress Plugin WooCommerce Multiple Vulnerabilities (2.3.5)
WordPress Plugin ACF Frontend display Arbitrary File Upload (2.0.5)
MySQL CVE-2022-21324 Vulnerability (CVE-2022-21324 )
WordPress Plugin ChimpMate-WordPress MailChimp Assistant Local File Inclusion (1.3.2)