An issue in Cute Http File Server v.3.1 allows a remote malicious user to escalate privileges via the password verification component.