Username .. (double dot) should be restricted or handled carefully

Disclosed: 2016-07-20 13:46:30 By sh4dow To gratipay

None

Vulnerability Details

If I change my username to "**test**" then as in normal case it will send a GET request to **/test/settings** but if I change my username to "**..**" (**double dot** within inverted commas) then it will send GET request to /settings because /../settings will change to /settings and hence final GET request will be to /settings which will show a 404 page. I have attached a video as POC. Regards!

Actions

View on HackerOne

Report Stats

Report ID: 152477
State: Closed
Substate: informative
Upvotes: 1

Username .. (double dot) should be restricted or handled carefully

Vulnerability Details

Actions

Report Stats

Share this report