HTTP Host Header Attack
Closed this issue · 0 comments
dumpling-soup commented
Host value in HTTP header is not checked. Modifying Host header in HTTP request modifies the all links to an arbitrary value. Included example request, result, and location of bug in the source code.
