Access Control Bypass | writeups.xyz

Title	Vulnerabilities	Programs	Authors
Authorization bypass due to cache misconfiguration	Authorization Bypass Access Control Bypass GraphQL	Undisclosed	Rikesh Baniya (@Rikeshbaniya)
Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!	Confusion Attack RCE XSS Access Control Bypass Authentication Bypass SSRF	Apache HTTP Server ModSecurity Redmine	Orange Tsai (@Orange_8361)
Gudifu: Guided Differential Fuzzing for HTTP Request Parsing Discrepancies	Web Cache Poisoning CPDoS HTTP Request Smuggling Access Control Bypass	ATS Nginx HAProxy	Bahruz Jabiyev (@BahruzJabiyev) Anthony Gavazzi Kaan Onarlioglu Engin Kirda
http: properly reject empty http header field names	HTTP Header Attack HTTP Request Smuggling Access Control Bypass	HAProxy	Bahruz Jabiyev (@BahruzJabiyev) Anthony Gavazzi Engin Kirda Kaan Onarlioglu Adi Peleg Harvey Tuch

Page 1 of 1