| Gotta cache 'em all: bending the rules of web cache exploitation |
|
|
|
| Splitting the email atom: exploiting parsers to bypass access controls |
|
|
|
| Gudifu: Guided Differential Fuzzing for HTTP Request Parsing Discrepancies |
|
|
|
| Exploiting Cache Poisoning via Unkeyed Parameters and Headers in a Drupal Application |
|
|
|
| Next.js and cache poisoning: a quest for the black hole |
|
|
|
| Cross-Site Scripting via Web Cache Poisoning and WAF bypass |
|
|
|
| How a Single Vulnerability Can Bring Down the JavaScript Ecosystem |
|
|
|
| Making desync attacks easy with TRACE |
|
|
|
| HTTP is dead... Long live HTTP?! |
|
|
|
| From Akamai to F5 to NTLM... with love. |
|
|
|
| $1,250 worth of Host Header Injection |
|
|
|
| Leaking secrets through caching with Bunny CDN |
|
|
|
| Web Cache Poisoning - Capability to disable/deface the app.██████████.com (A tale of poisoning through the layers of caching) |
|
|
|
| How i hacked all Zendesk sites 265,000 site by one line |
|
|
|
| Web-Cache Poisoning $$$? Worth it? |
|
|
|
| Unusual Cache Poisoning between Akamai and S3 buckets |
|
|
|
| Worldwide Server-side Cache Poisoning on All Akamai Edge Nodes ($50K+ Bounty Earned) |
|
|
|
| Exploiting Web3’s Hidden Attack Surface: Universal XSS on Netlify’s Next.js Library |
|
|
|
| Caching the Un-cacheables - Abusing URL Parser Confusions (Web Cache Poisoning Technique) |
|
|
|
| Saving more than 100,000 website from a Watering Hole attack |
|
|
|
| Let's Dance in the Cache - Destabilizing Hash Table on Microsoft IIS! |
|
|
|
| Advanced Inter-Process Desynchronization in SAP’s HTTP Server |
|
|
|
| How I Test For Web Cache Vulnerabilities + Tips And Tricks |
|
|
|
| How I Made $16,500 Hacking CDN Caching Servers — Part 1 |
|
|
|
| How I found (and fixed) a vulnerability in Python |
|
|
|
writeups.xyz
/
Web Cache Poisoning