bettercalln1ck / web_cache_deception

Replication of web_cache_deception

Login using username- admin and password -admin

/private is vulnerable path.This path can only be accessed after correct authentication.

static path added to /private gets catched by the server like /private/test.css

/private/test.css can then be accessed without authentication.

About

Languages

Language:JavaScript 35.0%Language:HTML 28.0%Language:CSS 24.3%Language:Dockerfile 12.7%