This repository is for educational purposes only.
vulnerable server run ./server.sh
exploit script run python3 exploit.py
https://blkcipher.pl/assets/pdfs/2019-12-10-error_page_request_smuggling.pdf
https://github.com/vuongnv3389-sec/CVE-2019-20372
why this repo?
because burp doesnt catch the second response and vuongnv3389-sec's repo didnt work for me :(