Closed Parimal-shaw closed 1 year ago
in other/Apache Tomcat Manager Path Normalization Panel.bcheck
should the password be static as it is?
Yes, it doesn't disclose current users password a user can change whatever they want the password to be .
Yes, it doesn't disclose current users password a user can change whatever they want the password to be .
Should the check be modified in that case to not include a specific password?
Not required , the current check cannot be changed in any other way the following checks required a password in static form or else the password will get rejected .
All the changes have been done ,suggested by you
Added Following Templates: