H1-331984 — Vulnetix

H1-331984 PUBLISHED

HTTP header can split /[\r\n]/ instead of /\r\n/

Exploit Intelligence

HTTP header can split /[\r\n]/ instead of /\r\n/ (hackerone)
HTTP header can split /[\r\n]/ instead of /\r\n/ (hackerone)

Timeline

Oct 25, 2019 CVE Published
Oct 25, 2019 PoC Published

References

HTTP header can split /[\r\n]/ instead of /\r\n/ advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›