WRITEUP #226

Exploiting Cache Poisoning via Unkeyed Parameters and Headers in a Drupal Application

OtherWeb cache poisoning

byAbhijith Namboothiry

Program

Published

Jun 30, 2024

Added to HackDex

Jul 15, 2024

Read Full Writeuphttps://medium.com/@abhijithknamboothiri96/exploiting-cache-poisoning-via-unkeyed-parameters-and-headers-in-a-drupal-application-db7a49a67ed4

▸ RELATED WRITEUPS

Gotta cache 'em all: bending the rules of web cache exploitation

OtherWeb cache poisoning

Splitting the email atom: exploiting parsers to bypass access controls

OtherWeb cache poisoning

Gudifu: Guided Differential Fuzzing for HTTP Request Parsing Discrepancies

OtherWeb cache poisoning

Data Theft in Salesforce: Manipulating Public Links

OtherSOQL injection

When Certificates Fail: A Story of Bypassed MFA in Remote Access

Other2FA / MFA bypass

Built with ❤️ by Shubham Rawat