Web server

GoAhead Developers Fix Embedded Web Server Null Byte Injection Vulnerability

Exploitation requires additional vulnerability or device misconfiguration UPDATE Embedthis fixed a null byte injection vulnerability in GoAhead, the embedded web server deployed in hundreds of millions of devices. “A specially crafted URL with an embedded character before the extension may result in the delivery of an incorrect file with a truncated filename,” one reads. security […]