VYPR
Unrated severityNVD Advisory· Published Jul 26, 2012· Updated Jun 16, 2026

CVE-2011-4963

CVE-2011-4963

Description

nginx/Windows 1.3.x before 1.3.1 and 1.2.x before 1.2.1 allows remote attackers to bypass intended access restrictions and access restricted files via (1) a trailing . (dot) or (2) certain "$index_allocation" sequences in a request.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Nginx/Nginxinferred2 versions
    >=1.3.0,<1.3.1 || >=1.2.0,<1.2.1+ 1 more
    • (no CPE)range: >=1.3.0,<1.3.1 || >=1.2.0,<1.2.1
    • (no CPE)range: <1.2.1, <1.3.1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.