Authentication Bypass via HTTP Parameter Pollution
How duplicate query parameters can trick authentication middleware into granting access to protected resources — a look at the vulnerability, exploitation, and remediation.
webauthenticationhppbypassmiddleware