Description
ntopng before 4.2 has an authentication bypass vulnerability. An attacker can bypass the webserver's authentication with a specially crafted HTTP request.
Remediation
Upgrade to the latest version of ntopng
References
Related Vulnerabilities
WordPress Plugin Quick Page/Post Redirect Security Bypass (5.1.9)
WordPress Plugin 404 to 301-Redirect, Log and Notify 404 Errors Security Bypass (3.0.7)
Joomla! Core 3.x.x Security Bypass (3.8.0 - 3.9.3)
WordPress Plugin Duplicator-WordPress Migration Security Bypass (0.5.8)
WordPress Plugin Warranties and Returns for WooCommerce Security Bypass (5.2.1)